CRITICAL🇵🇱 Wersja polska

CVE-2024-46506

CVSS 10.0v3.1pub. 2025-05-13upd. 2025-06-17

NetAlertX 23.01.14 through 24.x before 24.10.12 allows unauthenticated command injection via settings update because function=savesettings lacks an authentication requirement, as exploited in the wild in May 2025. This is related to settings.php and util.php.

🤖 AI Analysis
How it works

The `function=savesettings` function handled by `settings.php` and `util.php` files does not require any authentication. An attacker can send a crafted HTTP request to this endpoint, injecting malicious system commands into the settings parameters. The lack of access control mechanism (CWE-306 — Missing Authentication for Critical Function) makes the exploit trivial and possible to execute without any credentials.

Impact

An attacker gains the ability to remotely execute arbitrary system commands on the server with NetAlertX process privileges, which can lead to complete system takeover, data exfiltration, and violation of confidentiality, integrity, and availability.

Mitigation & patch

NetAlertX should be immediately updated to version 24.10.12 or later. Until the patch is applied, it is recommended to restrict network access to the NetAlertX administrative interface only to trusted IP addresses (e.g., via firewall or network rules).

Who is affected

NetAlertX in versions from 23.01.14 to 24.x before 24.10.12

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Netalertx

    APP
    Netalertx
    23.01.14 – 24.10.12 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-48952CRITICAL9.4PL ✓ten sam produkt

NetAlertX: Pominięcie uwierzytelnienia przez PHP magic hash (SHA-256)

CVE-2025-32440CRITICAL10.0PL ✓ten sam produkt

NetAlertX — ominięcie uwierzytelnienia umożliwia zmianę ustawień (CVSS 10.0)

CVE-2024-48766HIGH8.6ten sam produkt

NetAlertX 24.7.18 before 24.10.12 allows unauthenticated file reading because an HTTP client can ignore a redi...