CVE-2024-41692

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

26/07/2024

Last modified:

01/08/2024

Description

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by accessing the root shell on the vulnerable system.<br /> <br /> Successful exploitation of this vulnerability could allow the attacker to execute arbitrary commands with root privileges on the targeted system.

Impact

References to Advisories, Solutions, and Tools

https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2024-0225