CVE-2024-9977
CVSS 3.1 Score 4.7 of 10 (medium)
Details
Summary
CVE-2024-9977 is a critical vulnerability identified in the MitraStar GPT-2541GNAC router, specifically affecting the firewall settings page at /cgi-bin/settings-firewall.cgi. This flaw allows for OS command injection through manipulation of the SrcInterface argument, which can be exploited remotely. The vulnerability has been disclosed publicly, increasing the risk to organizations using these affected products. To remediate this issue, it is recommended that organizations update their firmware or secure their network configurations to prevent unauthorized access. The potential risks include unauthorized command execution, which could compromise system integrity and confidentiality.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.