CVE-2024-37770

Name of the Vulnerable Software and Affected Versions 14Finger version 1.1

Description The issue is related to a remote command execution (RCE) vulnerability in the fingerprint function. This vulnerability allows attackers to execute arbitrary commands via a crafted payload.

Recommendations For version 1.1, consider disabling the fingerprint function until a patch is available to prevent exploitation of the RCE vulnerability. Restrict access to the fingerprint function to minimize the risk of arbitrary command execution. Avoid using crafted payloads in the fingerprint function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.