{"id":75206,"date":"2025-12-31T02:45:49","date_gmt":"2025-12-30T23:15:49","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2024-58338-anevia-flamingo-xl-3-2-9-remote-root-jailbreak-via-traceroute-command\/"},"modified":"2025-12-31T02:45:49","modified_gmt":"2025-12-30T23:15:49","slug":"cve-2024-58338-anevia-flamingo-xl-3-2-9-remote-root-jailbreak-via-traceroute-command","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2024-58338-anevia-flamingo-xl-3-2-9-remote-root-jailbreak-via-traceroute-command\/","title":{"rendered":"CVE-2024-58338 – Anevia Flamingo XL 3.2.9 Remote Root Jailbreak via Traceroute Command"},"content":{"rendered":"

CVE ID : CVE-2024-58338<\/p>\n

Published : Dec. 30, 2025, 11:15 p.m. | 1\u00a0hour, 8\u00a0minutes ago<\/p>\n

Description : Anevia Flamingo XL 3.2.9 contains a restricted shell vulnerability that allows remote attackers to escape the sandboxed environment through the traceroute command. Attackers can exploit the traceroute command to inject shell commands and gain full root access to the device by bypassing the restricted login environment.<\/p>\n

Severity: 9.8 | CRITICAL<\/p>\n

Visit the link for more details, such as CVSS details, affected products, timeline, and more…\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"

CVE ID : CVE-2024-58338 Published : Dec. 30, 2025, 11:15 p.m. | 1\u00a0hour, 8\u00a0minutes ago Description : Anevia Flamingo XL 3.2.9 contains a restricted shell vulnerability that allows remote attackers to escape the sandboxed environment through the traceroute command. Attackers can exploit the traceroute command to inject shell commands and gain full root access to …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-75206","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/75206","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=75206"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/75206\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=75206"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=75206"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=75206"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}