CVE-2024-48419

Name of the Vulnerable Software and Affected Versions Edimax AC1200 Wi-Fi 5 Dual-Band router BR-6476AC version 1.06

Description The issue is related to command injection problems in /bin/goahead, which can be triggered through API endpoints such as "/goform/tracerouteDiagnosis", "/goform/pingDiagnosis", and "/goform/fromSysToolPingCmd". These problems allow an attacker with access to the web interface to inject and execute arbitrary shell commands with "root" or "superusuario" privileges. The vulnerability is associated with a lack of data sanitization on the management level, allowing a remote attacker to elevate privileges and execute arbitrary commands.

Recommendations For Edimax AC1200 Wi-Fi 5 Dual-Band router BR-6476AC version 1.06, consider disabling access to the vulnerable API endpoints "/goform/tracerouteDiagnosis", "/goform/pingDiagnosis", and "/goform/fromSysToolPingCmd" until a patch is available. Restrict access to the web interface to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.