CVE-2024-4231

Summary

This vulnerability exists in Digisol Router (DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02) due to presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by identifying UART pins and accessing the root shell on the vulnerable system.

Successful exploitation of this vulnerability could allow the attacker to access the sensitive information on the targeted system.

Affected Software

VendorProductVersion RangeStatus
DigisolDigisol Router DG-GR1321v3.2.02affected

Weaknesses

  • CWE-1191: CWE-1191: On-Chip Debug and Test Interface With Improper Access Control

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References