CVE-2024-54807

Name of the Vulnerable Software and Affected Versions Netgear WNR854T version 1.5.2

Description The issue concerns a command injection vulnerability in the UPNP service, specifically in the addmap exec function. This function parses the NewInternalClient parameter of the "AddPortMapping" SOAPAction into a system call without proper sanitation. An attacker can exploit this by sending a specially crafted SOAPAction request for "AddPortMapping" via the router's WANIPConn1 service, potentially achieving arbitrary command execution.

Recommendations For Netgear WNR854T version 1.5.2, as a temporary workaround, consider disabling the addmap exec function until a patch is available. Restrict access to the WANIPConn1 service to minimize the risk of exploitation. Avoid using the NewInternalClient parameter in the affected "AddPortMapping" SOAPAction until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.