Directory Traversal Vulnerability in GL-iNet Devices
CVE-2024-45262
What is CVE-2024-45262?
A vulnerability exists in certain GL-iNet devices that allows for arbitrary directory traversal through the params parameter in the /rpc endpoint's call method. This flaw enables an attacker to potentially execute scripts located in any directory of the device's file system. Affected models include MT6000, MT3000, MT2500, AXT1800, and AX1800 running firmware version 4.6.2. Attackers exploiting this vulnerability could gain unauthorized access to critical system files, leading to a compromise of device integrity. Comprehensive security measures are essential to mitigate the risks associated with this vulnerability.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.