CVE-2024-3659 Information

Description

Firmware in KAON AR2140 routers prior to version 4.2.16 is vulnerable to a shell command injection via sending a crafted request to one of the endpoints. In order to exploit this vulnerability one has to have access to the administrative portal of the router.

Reference

https://cert.pl/en/posts/2024/08/CVE-2024-3659 https://cert.pl/posts/2024/08/CVE-2024-3659