CVE-2024-13089: Authenticated RCE in update functionality in Guardian/CMC before 24.6.0
Description
An OS command injection vulnerability within the update functionality may allow an authenticated administrator to execute unauthorized arbitrary OS commands.
Users with administrative privileges may upload update packages to upgrade the versions of Nozomi Networks Guardian and CMC.
While these updates are signed and their signatures are validated prior to installation, an improper signature validation check has been identified.
This issue could potentially enable users to execute commands remotely on the appliance, thereby impacting confidentiality, integrity, and availability.
Classification
CVE ID: CVE-2024-13089
CVSS Base Severity: HIGH
CVSS Base Score: 7.5
CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Problem Types
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')Affected Products
Vendor: Nozomi Networks
Product: Guardian, CMC
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.19% (probability of being exploited)
EPSS Percentile: 41.03% (scored less or equal to compared to others)
EPSS Date: 2025-06-21 (when was this score calculated)
Stakeholder-Specific Vulnerability Categorization (SSVC)
SSVC Exploitation: none
SSVC Technical Impact: total
SSVC Automatable: false
References
https://nvd.nist.gov/vuln/detail/CVE-2024-13089https://security.nozominetworks.com/NN-2025:1-01