Multiple vulnerabilities in Comtrend router

Posted date 10/06/2024

Importance

4 - High

Affected Resources

Router Comtrend WLD71-T1_v2.0.201820, GRG-4280us hardware version.

Description

INCIBE has coordinated the publication of 2 vulnerabilities: one of high severity and one of medium severity, affecting the Comtrend router, version GRG-4280us, a hardware device that provides wifi connection, which have been discovered by Gabriel Gonzalez García.

These vulnerabilities have been assigned the following codes, CVSS v3.1 base score, CVSS vector and CWE vulnerability type for each vulnerability:

CVE-2024-5785: 8.0 | CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | CWE-78
CVE-2024-5786: 6.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N | CWE-352

Solution

There is no reported solution at this time.

Detail

CVE-2024-5785: command injection vulnerability in Comtrend router WLD71-T1_v2.0.201820, affecting the GRG-4280us version. This vulnerability could allow an authenticated user to execute commands inside the router by making a POST request to the URL “/boaform/admin/formUserTracert”.
CVE-2024-5786: Cross-Site Request Forgery vulnerability in Comtrend router WLD71-T1_v2.0.201820, affecting the GRG-4280us version. This vulnerability allows an attacker to force an end user to execute unwanted actions in a web application to which he is authenticated.

Etiquetas