CVE-2024-53942
published 2025-02-03CVE-2024-53942: An issue was discovered on NRadio N8-180 NROS-1.9.2.n3.c5 devices. The /cgi-bin/luci/nradio/basic/radio endpoint is vulnerable to command injection via the 2.4…
PriorityP346medium4.8CVSS 3.1
AVNACHPRNUINSUCLILAN
EPSS
15.20%
96.3th percentile
An issue was discovered on NRadio N8-180 NROS-1.9.2.n3.c5 devices. The /cgi-bin/luci/nradio/basic/radio endpoint is vulnerable to command injection via the 2.4 GHz and 5 GHz name parameters, allowing a remote attacker to execute arbitrary OS commands on the device (with root-level permissions) via crafted input.
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET WEB_SPECIFIC_APPS NRADIO radio ssid_g1_wlan Parameter Command Injection Attempt (CVE-2024-53942)
suricata·2026-01-06·CVSS 4.8
CVE-2024-53942 [MEDIUM] ET WEB_SPECIFIC_APPS NRADIO radio ssid_g1_wlan Parameter Command Injection Attempt (CVE-2024-53942)
ET WEB_SPECIFIC_APPS NRADIO radio ssid_g1_wlan Parameter Command Injection Attempt (CVE-2024-53942)
Rule: alert http any any -> $HOME_NET any (msg:"ET WEB_SPECIFIC_APPS NRADIO radio ssid_g1_wlan Parameter Command Injection Attempt (CVE-2024-53942)"; flow:established,to_server; http.method; content:"POST"; http.uri; bsize:32; content:"/cgi-bin/luci/nradio/basic/radio"; fast_pattern; http.request_body; content:"cbi.cbe.cloudd.d0.ssid_g1_wlan"; pcre:"/cbi\.cbe\.cloudd\.d0\.ssid_g1_wlan[01]\x3d[^\x26]*?(?:(?:\x3b|%3[Bb])|(?:\x0a|%0[Aa])|(?:\x60|%60)|(?:\x7c|%7[Cc])|(?:\x24|%24))+/"; reference:url,github.com/actuator/cve/tree/main/NRADIO; reference:cve,2024-53942; classtype:attempted-admin; sid:2066605; rev:1; metadata:affected_product NRADIO, attack_target Networking_Equipment, tls_state plai
No public exploits indexed.
No writeups or analysis indexed.
2025-02-03
Published