A new vulnerability has been discovered in SkyBridge/SkyBridge BASIC series products that were associated with Command injection.
This vulnerability has been assigned to CVE-2024-32850, and its severity has yet to be categorized.
However, this vulnerability has been addressed in their latest security advisory, and necessary patches have been released to fix it.
Moreover, the vulnerability depends on the contract details for the communication line used and the product setting.
If remote monitoring access from outside is enabled, a threat actor can attack or destroy the systems and steal or tamper with the settings data in the vulnerable product.
Looking for Full Data Breach Protection? Try Cynet’s All-in-One Cybersecurity Platform for MSPs: Try Free Demo
According to the reports shared, this vulnerability allows a threat actor to perform command injection without any login authentication requirement.
Additionally, the arbitrary command execution can be performed with administrator privileges on the product.
This vulnerability exists in SkyBridge MB-A100/110 up to Ver. 4.2.2 and SkyBridge BASIC MB-A130 up to Ver. 1.5.5 that have been patched in the latest versions SkyBridge MB-A100/110 Ver. 4.2.3 or later and SkyBridge BASIC MB-A130 Ver. 1.5.7 or later.
How To Patch?
To patch this vulnerability, users are recommended to upgrade their firmware versions to the latest versions, as addressed in the security advisory.
In case if users are unable to upgrade their firmware versions, the below workarounds can be followed.
- Disable remote monitoring and control function
- Enable authentication or encryption in remote monitoring and control function
- Use a closed network line that is not connected to the Internet
Users are recommended to follow the Skybridge security advisory to upgrade their products to the latest versions in order to prevent the exploitation of these vulnerabilities by threat actors.
Get special offers from ANY.RUN Sandbox. Until May 31, get 6 months of free service or extra licenses. Sign up for free.