CVE-2024-2389

Name of the Vulnerable Software and Affected Versions Flowmon versions prior to 11.1.14 and 12.3.5

Description A command injection vulnerability has been identified in Flowmon, allowing an unauthenticated user to gain entry to the system via the management interface and execute arbitrary system commands. This vulnerability can be exploited by sending specially crafted API requests. Over 1,500 companies worldwide are potentially affected, including SEGA and Volkswagen. There have been reports of proof-of-concept exploits being released, and users are urged to update to versions 12.3.4 and 11.1.14 to mitigate the risk.

Recommendations For versions prior to 11.1.14, update to version 11.1.14 or later. For versions prior to 12.3.5, update to version 12.3.5 or later. As a temporary workaround, consider restricting access to the management interface to minimize the risk of exploitation.