Final tweaks in check method

Author: h00die-gr3y

modules/exploits/linux/http/netis_unauth_rce_cve_2024_22729.rb

@@ -112,9 +112,15 @@ def check
     # trying to get the model and version number
     # unfortunately JSON parsing fails, so we need to use this ugly REGEX :-(
     version = res.body.match(/.?(version).?\s*:\s*.?((\\|[^,])*)/)
+    # when found, remove whitespaces and make all uppercase to avoid suprises in string splitting and comparison
     unless version.nil?
-      version_number = version[2].split('-V')[1].chop
-      model_number = version[2].split('-V')[0][/\(([^(]+)/, 1].chop
+      version_number = version[2].upcase.split('-V')[1].gsub(/[[:space:]]/, '').chop
+      # The model number part is usually something like Netis(NC63), but occassionally you see things like Stonet-N3D
+      if version[2].upcase.split('-V')[0].include?('-')
+        model_number = version[2].upcase.split('-V')[0][/-([^-]+)/, 1].gsub(/[[:space:]]/, '')
+      else
+        model_number = version[2].upcase.split('-V')[0][/\(([^)]+)/, 1].gsub(/[[:space:]]/, '')
+      end
       # Check if target is model MW5360 and running firmware 1.0.1.3442 (newest release 2024-04-24) or lower
       if version_number && model_number == 'MW5360' && (Rex::Version.new(version_number) <= Rex::Version.new('1.0.1.3442'))
         return CheckCode::Appears(version[2].chop.to_s)