Command Injection Vulnerability in Edimax AC1200 Dual-Band Router
CVE-2024-48419
8.8HIGH
What is CVE-2024-48419?
The Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC version 1.06 is exposed to command injection vulnerabilities. Attackers with access to the device's web interface can exploit this flaw through specific endpoints, namely /goform/tracerouteDiagnosis, /goform/pingDiagnosis, and /goform/fromSysToolPingCmd. This could enable unauthorized command execution with root privileges, posing significant security risks for affected users.