Description

14Finger v1.1 was discovered to contain a remote command execution (RCE) vulnerability in the fingerprint function. This vulnerability allows attackers to execute arbitrary commands via a crafted payload.

Related CPE's

a

b1ackc4t

14finger

1.1

Vulnerable

References

https://github.com/b1ackc4t/14Finger/issues/13

ExploitIssue TrackingVendor Advisory

https://github.com/k3ppf0r/CVE-2024-37770

ExploitThird Party Advisory

https://github.com/b1ackc4t/14Finger/issues/13

ExploitIssue TrackingVendor Advisory

https://github.com/k3ppf0r/CVE-2024-37770

ExploitThird Party Advisory

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0

Secondary
CWE-94

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

9.1 · Critical

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2024-07-10T18:15:04.983

1 year ago

Last modified

2025-07-01T14:17:37.483

5 months ago