CVE-2024-44845 Information

Description

DrayTek Vigor3900 v1.5.1.6 was discovered to contain an authenticated command injection vulnerability via the value parameter in the filter_string function.

Reference

https://github.com/glkfc/IoT-Vulnerability/blob/main/DaryTek/vigor3900_2.md