CVE-2024-51432 is a medium-severity Cross Site Scripting (XSS) vulnerability identified in the FiberHome HG6544C RP2743 router. The vulnerability stems from improper input sanitization of the SSID field displayed in the WiFi Clients List interface. Specifically, the SSID field does not adequately sanitize user-supplied input, allowing an attacker to inject malicious scripts that execute arbitrary code in the context of the router's web management interface. This can lead to unauthorized actions such as stealing session cookies, manipulating router settings, or conducting further attacks on the network. The CVSS vector indicates the attack requires adjacent network access (AV:A), low attack complexity (AC:L), low privileges (PR:L), and user interaction (UI:R). The scope is changed (S:C), meaning the vulnerability affects components beyond the initially vulnerable component. The impact affects confidentiality and integrity but not availability. No patches or known exploits are currently available, but the vulnerability is publicly disclosed as of November 1, 2024. The CWE-79 classification confirms this is a classic reflected or stored XSS issue. Given the nature of the device as a network gateway, exploitation could facilitate lateral movement or persistent compromise within affected networks.

The primary impact of CVE-2024-51432 is the potential compromise of the confidentiality and integrity of the router's management interface and connected network traffic. An attacker exploiting this vulnerability could execute arbitrary scripts in the context of an authenticated user’s session, potentially stealing credentials, modifying router configurations, or injecting malicious payloads that affect other devices on the network. While availability is not directly impacted, the breach of router controls could lead to indirect denial of service or network disruption. Organizations relying on FiberHome HG6544C RP2743 routers, especially in sensitive environments, risk unauthorized access and control over their network infrastructure. This could facilitate further attacks such as man-in-the-middle, data exfiltration, or persistent network compromise. The requirement for adjacent network access and user interaction limits remote exploitation but does not eliminate risk in environments with guest networks or insufficient network segmentation.

To mitigate CVE-2024-51432, organizations should implement strict access controls to the router’s management interface, limiting it to trusted administrative networks and users. Network segmentation should be enforced to prevent untrusted users from reaching the device interface. Monitoring and filtering SSID names broadcast or connected to the network can help detect suspicious or malicious inputs attempting to exploit the vulnerability. Administrators should disable or restrict guest WiFi access where possible to reduce exposure. Regularly auditing router configurations and logs for anomalies is recommended. Since no official patches are currently available, organizations should engage with FiberHome support for updates and apply firmware updates promptly once released. Employing web application firewalls (WAFs) or intrusion detection systems (IDS) that can detect XSS attempts on the router interface may provide additional protection. User education about the risks of interacting with untrusted WiFi networks or SSIDs can also reduce exploitation likelihood.