CVE-2024-48074 | DrayTek Vigor 2960 1.4.4 cgi-bin/mainfunction.cgi doPPPoE table command injection

CVE-2024-48074 | DrayTek Vigor 2960 1.4.4 cgi-bin/mainfunction.cgi doPPPoE table command injection

A vulnerability classified as critical has been found in DrayTek Vigor 2960 1.4.4. Affected is the function doPPPoE of the file cgi-bin/mainfunction.cgi. The manipulation of the argument table leads to command injection. This vulnerability is traded as CVE-2024-48074. It is possible to launch the attack remotely. There is no exploit available.