CVE-2024-50372

{"id": "CVE-2024-50372", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "prodsec@nozominetworks.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2024-11-26T11:22:06.457", "references": [{"url": "https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2024-50372", "tags": ["Third Party Advisory"], "source": "prodsec@nozominetworks.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "prodsec@nozominetworks.com", "description": [{"lang": "en", "value": "CWE-78"}]}], "descriptions": [{"lang": "en", "value": "A CWE-78 \"Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')\" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G (<= 1.6.3), EKI-6333AC-2GD (<= v1.6.3) and EKI-6333AC-1GPO (<= v1.2.1). The vulnerability can be exploited by remote unauthenticated users capable of interacting with the default \"edgserver\" service enabled on the access point and malicious commands are executed with root privileges. No authentication is enabled on the service and the source of the vulnerability resides in processing code associated to the \"backup_config_to_utility\" operation."}, {"lang": "es", "value": "Se descubri\u00f3 una vulnerabilidad CWE-78 \"Neutralizaci\u00f3n incorrecta de elementos especiales utilizados en un comando del SO ('Inyecci\u00f3n de comando del SO')\" que afecta a los siguientes dispositivos fabricados por Advantech: EKI-6333AC-2G (&lt;= 1.6.3), EKI-6333AC-2GD (&lt;= v1.6.3) y EKI-6333AC-1GPO (&lt;= v1.2.1). La vulnerabilidad puede ser explotada por usuarios remotos no autenticados capaces de interactuar con el servicio \"edgserver\" predeterminado habilitado en el punto de acceso y se ejecutan comandos maliciosos con privilegios de superusuario. No hay autenticaci\u00f3n habilitada en el servicio y la fuente de la vulnerabilidad reside en el c\u00f3digo de procesamiento asociado a la operaci\u00f3n \"backup_config_to_utility\"."}], "lastModified": "2026-01-23T18:12:46.960", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:advantech:eki-6333ac-2g_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5E027C8-2521-45FC-BABB-4A6E3341F883", "versionEndExcluding": "1.6.5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:advantech:eki-6333ac-2g:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B3B63DF4-0184-4108-B48B-D31179104701"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:advantech:eki-6333ac-2gd_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "447F8AEB-2C7C-411A-893C-11C2F7588C82", "versionEndExcluding": "1.6.5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:advantech:eki-6333ac-2gd:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "02F70DBA-2D4C-4407-885D-71887A1A7979"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:advantech:eki-6333ac-1gpo_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "828B9D05-0064-4690-A624-D3BF659BD316", "versionEndExcluding": "1.2.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:advantech:eki-6333ac-1gpo:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D2A73A2B-9FD5-4971-8FFF-1BA14BCCB37B"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "prodsec@nozominetworks.com"}