CVE-2024-30220

Name of the Vulnerable Software and Affected Versions MZK-MF300N all firmware versions

Description A command injection issue allows a network-adjacent unauthenticated attacker to execute an arbitrary command by sending a specially crafted request to a certain port.

Recommendations For all firmware versions, consider restricting access to the affected port as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.