OpenWRT Vulnerability Scope

OpenWrt is an open-source project for embedded operating systems based on Linux, primarily used on embedded devices to route network traffic.

OpenWrt provides a fully writable filesystem with package management. For developers, OpenWrt is the framework to build an application without having to build a complete firmware around it; for users this means the ability for full customization, to use the device in ways never envisioned.

Think you figured out how to run unauthenticated commands on OpenWRT? 

We are looking for the following:

  • Code/command execution
  • Authentication bypass
  • Command injection