CVE-2018-17317

Name of the Vulnerable Software and Affected Versions FruityWifi version 2.1

Description The issue allows remote attackers to execute arbitrary commands. This can be achieved by injecting shell metacharacters into specific parameters in two API endpoints: "/www/script/config iface.php" and "/www/page config.php". The vulnerable parameters in "/www/script/config iface.php" include io mode, ap mode, io action, io in iface, io in set, io in ip, io in mask, io in gw, io out iface, io out set, io out mask, io out gw, iface, and domain. In "/www/page config.php", the parameters newSSID, hostapd secure, hostapd wpa passphrase, and supplicant ssid are vulnerable.

Recommendations For FruityWifi version 2.1, as a temporary workaround, consider restricting access to the "/www/script/config iface.php" and "/www/page config.php" endpoints to minimize the risk of exploitation. Avoid using the vulnerable parameters in these endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.