CVE-2024-45891

Summary

CVE-2024-45891 is a post-authentication command injection vulnerability affecting DrayTek Vigor3900 devices running firmware version 1.5.1.3. The issue lies in the `cgi-bin/mainfunction.cgi` script, where the `action` parameter can be manipulated with the value `delete_wlan_profile`. Maliciously crafted input in this parameter can result in the execution of arbitrary commands on the affected device. Successful exploitation of this vulnerability could lead to unauthorized access, data theft, or denial-of-service attacks. It is strongly recommended that users upgrade to the latest available firmware to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.