Back to search
CVE-2024-3659
Published: Aug 8, 2024
Modified: Nov 17, 2025
PUBLISHED
Description
Firmware in KAON AR2140 routers, prior to versions 3.2.50 and 4.2.16, is vulnerable to a shell command injection via sending a crafted request to one of the endpoints. In order to exploit this vulnerability, one has to have access to the administrative portal of the router.
| Vendor | Product | Versions |
|---|---|---|
KAON Group | AR2140 | affected 3.0.0 - < 3.2.50affected 4.0.0 - < 4.2.16 |
Weaknesses (CWE)
References
https://cert.pl/en/posts/2024/08/CVE-2024-3659
third-party-advisory
https://cert.pl/posts/2024/08/CVE-2024-3659
third-party-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now