CVE-2024-30167

/cgi-bin/time.cgi in Atlona AT-OME-MS42 Matrix Switcher 1.1.2 allow remote authenticated users to execute arbitrary commands as root via a POST request that carries a serverName parameter.
Configurations

No configuration.

History

08 May 2026, 15:16

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.3
CWE CWE-77

08 May 2026, 06:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-05-08 06:16

Updated : 2026-06-17 07:26


NVD link : CVE-2024-30167

Mitre link : CVE-2024-30167

CVE.ORG link : CVE-2024-30167


JSON object : View

Products Affected

No product.

CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')