A recent security flaw has been discovered in the Wi-Fi Test Suite, potentially enabling local attackers to execute arbitrary code with elevated privileges.
The vulnerability, known as CVE-2024-41992, affects the Wi-Fi Alliance’s code deployed on Arcadyan FMIMG51AX000J routers.
The CERT Coordination Center (CERT/CC) released an advisory on Wednesday, stating that the flaw allows unauthenticated local attackers to infiltrate the Wi-Fi Test Suite and run arbitrary commands with root privileges.
The Wi-Fi Test Suite by the Wi-Fi Alliance is a comprehensive platform designed to automate Wi-Fi component and device testing. While parts of the toolkit are open source and available on GitHub, the complete package is exclusive to members of the Wi-Fi Alliance.
SSD Secure Disclosure disclosed details about the vulnerability in August 2024, highlighting the potential for command injection leading to the execution of commands with root privileges. The flaw was initially reported to the Wi-Fi Alliance in April 2024.
An independent researcher named “fj016” uncovered and reported the security flaws, providing a proof-of-concept exploit here.
CERT/CC emphasized that the Wi-Fi Test Suite should not be used in production environments but has been detected in commercial router setups.
Until a patch is available, vendors are advised to either remove the Wi-Fi Test Suite from their devices or update it to version 9.0 or newer to mitigate the risk of exploitation.
We have reached out to the Wi-Fi Alliance for additional comments and will update the article accordingly.