Command Injection Vulnerability in Motorola CX2L Router
CVE-2024-45880

Currently unrated

Key Information:

Vendor: Motorola
Status: CX2L Router
Vendor: CVE Published:; 8 October 2024

What is CVE-2024-45880?

The Motorola CX2L router is susceptible to a command injection vulnerability within the SetStationSettings function. This occurs when the system improperly executes commands to configure parameters, such as MAC addresses, without filtering the input. Malicious users can exploit this weakness, injecting arbitrary commands that could compromise the router's security and functionality.

References

https://github.com/N1nEmAn/wp/blob/main/m0tOrol%40-Cx2l.pdf

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 8, 2024
Vulnerability Reserved
Sep 11, 2024