Skip to main content

CVE-2024-24332: n/a in n/a

Critical
VulnerabilityCVE-2024-24332cvecve-2024-24332
Published: Tue Jan 30 2024 (01/30/2024, 00:00:00 UTC)
Source: CVE Database V5
Vendor/Project: n/a
Product: n/a

Description

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the url parameter in the setUrlFilterRules function.

AI-Powered Analysis

AILast updated: 07/08/2025, 14:13:06 UTC

Technical Analysis

CVE-2024-24332 is a critical command injection vulnerability identified in the TOTOLINK A3300R router firmware version V17.0.0cu.557_B20221024. The vulnerability exists in the setUrlFilterRules function, which processes a URL parameter without proper sanitization or validation. This flaw allows an unauthenticated remote attacker to inject arbitrary commands into the system shell by manipulating the URL parameter. Given the CVSS 3.1 base score of 9.8, the vulnerability is highly severe, with network attack vector (AV:N), low attack complexity (AC:L), no privileges required (PR:N), no user interaction needed (UI:N), and impacts confidentiality, integrity, and availability (C:H/I:H/A:H). Exploiting this vulnerability could lead to full system compromise, enabling attackers to execute arbitrary commands, potentially gaining control over the router, intercepting or redirecting network traffic, deploying malware, or pivoting into internal networks. The vulnerability is classified under CWE-78 (Improper Neutralization of Special Elements used in an OS Command), indicating a classic OS command injection issue. No patches or known exploits in the wild have been reported at the time of publication, but the critical nature and ease of exploitation make it a significant threat to affected devices.

Potential Impact

For European organizations, this vulnerability poses a substantial risk, especially for those using TOTOLINK A3300R routers in their network infrastructure. Compromise of these routers could lead to interception of sensitive data, disruption of network services, and unauthorized access to internal systems. Given the router's role as a gateway device, attackers could manipulate traffic flows, conduct man-in-the-middle attacks, or establish persistent footholds within corporate networks. Small and medium enterprises (SMEs) and home offices using this device are particularly vulnerable due to potentially less rigorous network security controls. The impact extends beyond confidentiality breaches to include integrity and availability disruptions, potentially causing operational downtime and reputational damage. Additionally, the lack of authentication and user interaction requirements means attacks can be automated and rapidly propagated, increasing the risk of widespread exploitation if the device is exposed to the internet.

Mitigation Recommendations

Organizations should immediately assess their network for the presence of TOTOLINK A3300R routers running the vulnerable firmware version V17.0.0cu.557_B20221024. Since no official patches are currently available, mitigation should focus on network-level controls: restrict remote access to the router's management interface by implementing firewall rules to limit access to trusted IP addresses only; disable remote management features if not required; segment the network to isolate the router from critical assets; monitor network traffic for unusual command injection patterns or unexpected outbound connections; and consider replacing vulnerable devices with models from vendors that provide timely security updates. Additionally, organizations should implement intrusion detection/prevention systems (IDS/IPS) with signatures targeting command injection attempts and maintain up-to-date asset inventories to quickly identify affected devices. Regularly check vendor communications for patch releases and apply updates promptly once available.

Need more detailed analysis?Get Pro

Technical Details

Data Version
5.1
Assigner Short Name
mitre
Date Reserved
2024-01-25T00:00:00.000Z
Cvss Version
3.1
State
PUBLISHED

Threat ID: 683a06f1182aa0cae2bd9a58

Added to database: 5/30/2025, 7:28:49 PM

Last enriched: 7/8/2025, 2:13:06 PM

Last updated: 8/18/2025, 12:13:49 PM

Views: 21

Actions

PRO

Updates to AI analysis are available only with a Pro account. Contact root@offseq.com for access.

Please log in to the Console to use AI analysis features.

Need enhanced features?

Contact root@offseq.com for Pro access with improved analysis and higher rate limits.

Latest Threats