CVE-2024-28811

Name of the Vulnerable Software and Affected Versions Infinera hiT 7300 version 5.60.50

Description A web application in the Infinera hiT 7300 allows a remote privileged attacker to execute applications contained in a specific OS directory via HTTP invocations. This issue can lead to unauthorized access. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For Infinera hiT 7300 version 5.60.50, patch immediately to fix the issue and review logs for signs of exploit. Limit exposure until patched. As a temporary workaround, consider restricting access to the web application to minimize the risk of exploitation.