Path traversal in DMH-WT7600NEX - CVE-2024-23929
Published: August 6, 2024
DMH-WT7600NEX
Detailed vulnerability description
The vulnerability allows a remote attacker to perform directory traversal attacks.
The vulnerability exists due to input validation error when processing directory traversal sequences within the telematics functionality. A remote user on the local network can send a specially crafted HTTP request and create arbitrary files on the system.