CVE-2024-41889 Information

Description

Multiple Pimax products accept WebSocket connections from unintended endpoints. If this vulnerability is exploited arbitrary code may be executed by a remote unauthenticated attacker.

Reference

https://pimax.com/pages/downloads-manuals https://github.com/OpenMAR/PiTool https://jvn.jp/en/jp/JVN50850706/