CVE-2024-3785 Information

Description

Vulnerability in WBSAirback 21.02.04 which involves improper neutralisation of Server-Side Includes (SSI) through Device NAS shared section (/admin/DeviceNAS). Exploitation of this vulnerability could allow a remote user to execute arbitrary code.

Reference

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-wbsairback-white-bear-solutions