Vulnerabilities > CVE-2023-31446 - Unspecified vulnerability in Cassianetworks Xc1000 Firmware and Xc2000 Firmware

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

cassianetworks

critical

NVD

Published: 2024-01-10

Updated: 2024-01-29

Summary

In Cassia Gateway firmware XC1000_2.1.1.2303082218 and XC2000_2.1.1.2303090947, the queueUrl parameter in /bypass/config is not sanitized. This leads to injecting Bash code and executing it with root privileges on device startup.

Vulnerable Configurations

Part	Description	Count
OS	Cassianetworks Cassianetworks Xc1000 Firmware 2.1.1.2303082218 Cassianetworks Xc2000 Firmware 2.1.1.2303090947	2
Hardware	Cassianetworks Cassianetworks Xc1000 - Cassianetworks Xc2000 -	2

References

https://www.cassianetworks.com
https://github.com/Dodge-MPTC/CVE-2023-31446-Remote-Code-Execution
https://blog.kscsc.online/cves/202331446/md.html