CVE-2024-54007
Published: 07 January 2025
Description
Multiple command injection vulnerabilities exist in the web interface of the 501 Wireless Client Bridge which could lead to authenticated remote command execution. Successful exploitation of these vulnerabilities result in the ability of an attacker to execute arbitrary commands as a privileged user on the underlying operating system. Exploitation requires administrative authentication credentials on the host system.
Security Summary
CVE-2024-54007 is a set of multiple command injection vulnerabilities (CWE-77) in the web interface of the 501 Wireless Client Bridge. These flaws allow authenticated remote command execution, enabling attackers to run arbitrary commands as a privileged user on the underlying operating system. The vulnerability carries a CVSS v3.1 base score of 7.2 (AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H), indicating high severity due to its potential for complete system compromise.
Exploitation requires an attacker to possess administrative authentication credentials on the affected host (PR:H), making it targeted at insiders or those who have already obtained valid admin access via other means. Once authenticated over the network (AV:N), an attacker can inject malicious commands through the web interface with low complexity (AC:L) and no user interaction (UI:N). Successful exploitation grants high-impact confidentiality, integrity, and availability effects, potentially allowing full control over the device.
For mitigation details, refer to the HPE security bulletin at https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04763en_us&docLocale=en_US, which provides guidance on patches and remediation for the 501 Wireless Client Bridge.
Details
- CWE(s)