Multiple vulnerabilities in Comtrend router

Posted date 10/06/2024
Identificador
INCIBE-2024-0303
Importance
4 - High
Affected Resources
  • Router Comtrend WLD71-T1_v2.0.201820, GRG-4280us hardware version.
Description

INCIBE has coordinated the publication of 2 vulnerabilities: one of high severity and one of medium severity, affecting the Comtrend router, version GRG-4280us, a hardware device that provides wifi connection, which have been discovered by Gabriel Gonzalez García.

These vulnerabilities have been assigned the following codes, CVSS v3.1 base score, CVSS vector and CWE vulnerability type for each vulnerability:

  • CVE-2024-5785: 8.0 | CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | CWE-78
  • CVE-2024-5786: 6.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N | CWE-352 
Solution

There is no reported solution at this time.

Detail
  • CVE-2024-5785: command injection vulnerability in Comtrend router WLD71-T1_v2.0.201820, affecting the GRG-4280us version. This vulnerability could allow an authenticated user to execute commands inside the router by making a POST request to the URL “/boaform/admin/formUserTracert”.
  • CVE-2024-5786: Cross-Site Request Forgery vulnerability in Comtrend router WLD71-T1_v2.0.201820, affecting the GRG-4280us version. This vulnerability allows an attacker to force an end user to execute unwanted actions in a web application to which he is authenticated.