CVE-2024-4231

MEDIUM

Digisol Router <3.2.02 - Privilege Escalation

Title source: llm

Description

This vulnerability exists in Digisol Router (DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02) due to presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by identifying UART pins and accessing the root shell on the vulnerable system. Successful exploitation of this vulnerability could allow the attacker to access the sensitive information on the targeted system.

Exploits (1)

nomisec STUB

by Redfox-Security · poc

https://github.com/Redfox-Security/Digisol-DG-GR1321-s-Improper-Access-Control-CVE-2024-4231

View Code ZIP pw:eip

References (1)

[Various Sources] https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2024-0158

Scores

CVSS v3 4.6

EPSS 0.0478

EPSS Percentile 89.5%

Attack Vector PHYSICAL

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-1191

Status published

Products (1)

Digisol/Digisol Router DG-GR1321 v3.2.02

Published May 14, 2024

Tracked Since Feb 18, 2026