CVE-2024-33789 affects Linksys E5600 routers, potentially allowing attackers to execute arbitrary commands via the ipurl parameter. Given that routers like the Linksys E5600 are commonly used in industrial environments for network connectivity and communication, this vulnerability poses a significant risk to OT systems and operations. Professionals should promptly assess their network infrastructure for affected devices and apply any patches or mitigations provided by the vendor to prevent exploitation and safeguard critical industrial processes.
From the CVE database:
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability via the ipurl parameter at /API/info form endpoint.
https://www.cve.org/CVERecord?id=CVE-2024-33789