CVE-2024-52320

Name of the Vulnerable Software and Affected Versions Planet Switches (affected versions not specified)

Description The issue exists due to the lack of measures to neutralize special elements in the firmware of PLANET Technology switches. An unauthenticated attacker could send commands through a malicious HTTP request, potentially resulting in remote code execution. This can be achieved by exploiting a command injection vulnerability, allowing attackers to execute arbitrary code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.