Victure RX1800 Command Injection Vulnerability

A command injection vulnerability has been identified in the Victure RX1800 Wi-Fi router, running firmware version EN_V1.0.0_r12_110933. This vulnerability allows attackers to execute arbitrary commands on the device by exploiting an endpoint that lacks proper authentication and input validation.

Impact

Exploitation of this vulnerability allows for unauthorized remote code execution on the affected router.

Reproduction

To reproduce this vulnerability, access the router's web interface and navigate to the 'ZeroSetting' endpoint within the 'admin' system module. This endpoint does not require authentication. Once accessed, send a request with the 'area' parameter set to a command, such as 'T;touch /tmp/RCE'. The command will be executed on the router, demonstrating the command injection vulnerability.

Remediation

There is currently no available fix for this vulnerability. Users are advised to discontinue use of the Victure RX1800 router and replace it with a more reputable brand.