CVE-2024-9166

CRITICAL NUCLEI

Device - Privilege Escalation

Title source: llm

Description

The device enables an unauthorized attacker to execute system commands with elevated privileges. This exploit is facilitated through the use of the 'getcommand' query within the application, allowing the attacker to gain root access.

Exploits (1)

nomisec SCANNER 3 stars

by Andrysqui · poc

https://github.com/Andrysqui/CVE-2024-9166

View Code ZIP pw:eip

Nuclei Templates (1)

TitanNit Web Control 2.01/Atemio 7600 - Remote Code Execution

CRITICALVERIFIEDby DhiyaneshDk

FOFA: title="TitanNit Web Control"

References (1)

[Third Party Advisory, US Government Resource] https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-03

Scores

CVSS v4 9.3

EPSS 0.0369

EPSS Percentile 88.0%

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Details

CWE

CWE-78

Status published

Products (1)

Atelmo/Atemio AM 520 HD Full HD Satellite Receiver < TitanNit 2.01

Published Sep 26, 2024

Tracked Since Feb 18, 2026