Description

Command injection vulnerability in PLANEX COMMUNICATIONS wireless LAN routers allows a network-adjacent unauthenticated attacker to execute an arbitrary command by sending a specially crafted request to a certain port. Note that MZK-MF300N is no longer supported, therefore the update for this product is not provided.

INFO

Published Date :

2024-04-15T10:44:02.297Z

Last Modified :

2025-08-27T21:02:31.611Z

Source :

jpcert
AFFECTED PRODUCTS

The following products are affected by CVE-2024-30220 vulnerability.

Vendors Products
Planex
  • Mzk-mf300hp2
  • Mzk-mf300hp2 Firmware
  • Mzk-mf300n
  • Mzk-mf300n Firmware
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-30220.

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact