How severe is CVE-2024-7357?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.3 out of 10.

What type of vulnerability is CVE-2024-7357?

This is classified as CWE-78, which is a common weakness in software security.

CVE-2024-7357 - MEDIUM Severity | CVSS 6.3

Vulnerability Description

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DIR-600 up to 2.18. It has been rated as critical. This issue affects the function soapcgi_main of the file /soap.cgi. The manipulation of the argument service leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-273329 was assigned to this vulnerability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: Vendor was contacted early and confirmed immediately that the product is end-of-life. It should be retired and replaced.

Related Vulnerabilities

CVE-2015-7769

MEDIUM

CVSS:6.3(Medium)

baserCMS 3.0.2 through 3.0.8 allows remote authenticated users to execute arbitrary OS commands via unspecified vectors.

CWE-782015

CVE-2016-0325

MEDIUM

CVSS:6.3(Medium)

IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 3.0.1.6 before iFix8, 4.0 b...

CWE-782016

CVE-2021-26970

MEDIUM

CVSS:6.3(Medium)

A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. Vulnerabilities in the AirWave web-base management i...

CWE-782021

CVE-2021-34612

MEDIUM

CVSS:6.3(Medium)

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager...

CWE-782021

CVE-2021-34613

MEDIUM

CVSS:6.3(Medium)

CWE-782021

CVE-2021-34614

MEDIUM

CVSS:6.3(Medium)

CWE-782021