CVE-2024-48419

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 27, 2025

Updated: Jan 28, 2025

CWE ID 77

Summary

CVE-2024-48419 is a critical vulnerability affecting the Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06. This issue involves Command Injection flaws in the /bin/goahead component. An attacker can exploit these vulnerabilities by targeting the /goform/tracerouteDiagnosis, /goform/pingDiagnosis, and /goform/fromSysToolPingCmd interfaces. Successful exploits allow the attacker to inject and execute arbitrary shell commands with "root" privileges, potentially leading to unauthorized access, data theft, or system compromise.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/zUIjfX
https://www.cve.org/CVERecord?id=CVE-2024-48419
https://nvd.nist.gov/vuln/detail/CVE-2024-48419

Back to Vulnerability Database

CVE-2024-48419

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations