CVE-2024-26519

Name of the Vulnerable Software and Affected Versions Casa Systems NTC-221 versions 2.0.99.0 and before

Description The issue allows a remote attacker to execute arbitrary code via a crafted payload to the "/www/cgi-bin/nas.cgi" component. This enables the attacker to potentially gain control over the system.

Recommendations For Casa Systems NTC-221 versions 2.0.99.0 and before, consider restricting access to the "/www/cgi-bin/nas.cgi" component until a patch is available. As a temporary workaround, avoid using the vulnerable component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.