Primary

Context

Novastar CX40 Command Injection Vulnerability in NetFilter Utility

Vulnerability

A critical command injection vulnerability has been identified in Novastar CX40 versions through 2.44.0. The issue arises in the NetFilter Utility component, specifically within the 'system/popen' function of the '/usr/nova/bin/netconfig' file. The vulnerability allows for arbitrary command execution by injecting shell escape characters into user input, which is then executed without proper sanitization.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the affected device.

Reproduction

The vulnerability can be reproduced by injecting unsanitized user input into the 'netconfig' utility, which handles network configuration. This can be done by exploiting the 'system()' or 'popen()' calls that lack input validation. Once the input is crafted to include shell escape characters, such as backticks or subshell syntax, arbitrary commands can be executed on the device.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

6.6

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

6.6

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Novastar CX40 Command Injection Vulnerability in NetFilter Utility

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating