An authenticated command injection flaw in the AVTECH DGM1104 SMB server function permits remote command execution, posing a critical risk to device integrity.

The vulnerability is an authenticated command injection flaw located in the device's SMB server function. By providing crafted input, an attacker with valid credentials can execute arbitrary commands on the underlying operating system.

The CVSS score of 8.8 reflects the high severity of this issue. Because the exploit is relatively easy to perform remotely, an attacker could gain complete control over the affected device, leading to full system compromise and potential lateral movement within the network.

Immediate Action: Check the AVTECH support site for firmware updates and apply them immediately to mitigate command injection risks.

Proactive Monitoring: Monitor network traffic for unusual SMB communication patterns and check system logs for unauthorized command execution attempts.

Compensating Controls: Restrict access to the SMB service to authorized internal IP addresses and disable the service if it is not strictly required for business operations.

Public Exploit Available: false

Given the ease of remote exploitation for this command injection vulnerability, it is imperative that users of the AVTECH DGM1104 apply all available security updates. Disable the SMB service if it is not necessary for current operations to minimize the attack surface.