Missing input validation and OS command integration of the input in the ORing IAP-420 web-interface allows authenticated command injection.This issue affects IAP-420 version 2.01e and below.
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 08 Oct 2025 10:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-77

Wed, 08 Oct 2025 09:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-78

cve-icon MITRE

Status: PUBLISHED

Assigner: CyberDanube

Published:

Updated: 2025-10-08T09:14:56.574Z

Reserved: 2024-05-27T08:38:01.961Z

Link: CVE-2024-5411

cve-icon Vulnrichment

Updated: 2024-08-01T21:11:12.706Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-28T11:15:10.520

Modified: 2025-10-08T10:15:36.760

Link: CVE-2024-5411

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.