CVE-2024-50370

Name of the Vulnerable Software and Affected Versions: Advantech EKI-6333AC-2G versions 1.6.3 and earlier Advantech EKI-6333AC-2GD versions 1.6.3 and earlier Advantech EKI-6333AC-1GPO versions 1.2.1 and earlier

Description: The issue exists due to the lack of neutralization of special elements used in an operating system command. This can be exploited by a remote attacker to execute arbitrary commands with root privileges. The vulnerability affects the edgserver service, which is enabled by default on the access point. No authentication is required to exploit this issue, and malicious commands are executed with root privileges. The source of the vulnerability resides in the processing code associated with the cfg cmd set eth conf operation.

Recommendations: For Advantech EKI-6333AC-2G versions 1.6.3 and earlier, update to a version later than 1.6.3. For Advantech EKI-6333AC-2GD versions 1.6.3 and earlier, update to a version later than 1.6.3. For Advantech EKI-6333AC-1GPO versions 1.2.1 and earlier, update to a version later than 1.2.1. As a temporary workaround, consider disabling the edgserver service until a patch is available. Restrict access to the cfg cmd set eth conf operation to minimize the risk of exploitation.