CVE-2024-45721

Name of the Vulnerable Software and Affected Versions: home 5G HR02 (affected versions not specified) Wi-Fi STATION SH-52B (affected versions not specified) Wi-Fi STATION SH-54C (affected versions not specified)

Description: The issue is an OS command injection vulnerability found in the HOST name configuration screen of the affected devices. This vulnerability allows an arbitrary OS command to be executed with root privilege by an administrative user.

Recommendations: For home 5G HR02, consider restricting access to the HOST name configuration screen until a patch is available. For Wi-Fi STATION SH-52B, avoid using the HOST name configuration screen with administrative privileges until the issue is resolved. For Wi-Fi STATION SH-54C, as a temporary workaround, consider disabling the HOST name configuration screen functionality until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.