Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-7448
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Magnet Forensics AXIOM Command Injection Remote Code Execution Vulnerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
Magnet Forensics AXIOM Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Magnet Forensics AXIOM. User interaction is required to exploit this vulnerability in that the target must acquire data from a malicious mobile device. The specific flaw exists within the Android device image acquisition functionality. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-23964.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Magnet Forensics AXIOM 操作系统命令注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Magnet Forensics AXIOM是Magnet Forensics公司的一个完整的数字调查平台。允许检查人员无缝获取和分析法医数据。 Magnet Forensics AXIOM存在操作系统命令注入漏洞,该漏洞源于在使用用户提供的字符串执行系统调用之前缺乏适当的验证。攻击者利用该漏洞在当前用户的环境中执行代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
Magnet ForensicsAXIOM 8.0.0.39753 -
II. Public POCs for CVE-2024-7448
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2024-7448
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: AXIOM
Same vendor: Magnet Forensics
Same weakness: CWE-78
V. Comments for CVE-2024-7448

No comments yet

Leave a comment