CVE-2024-41368

Name of the Vulnerable Software and Affected Versions RPi-Jukebox-RFID version 2.7.0

Description A remote code execution (RCE) issue was discovered in RPi-Jukebox-RFID. The issue is related to the htdocsinc.setWlanIpMail.php file, which allows for remote code execution.

Recommendations For RPi-Jukebox-RFID version 2.7.0, consider restricting access to the inc.setWlanIpMail.php file in the htdocs directory until a patch is available. As a temporary workaround, disabling the execution of code from this file may help mitigate the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.