CVE-2024-11980

CVSS 3.1 Score 8.6 of 10 (high)

Details

Published Nov 29, 2024
CWE ID 306

Summary

CVE-2024-11980 is a newly identified vulnerability affecting certain models of routers from Billion Electric. This issue involves a missing authentication feature, making it possible for unauthenticated remote attackers to directly access specific functionality. The consequences of this vulnerability include the ability to obtain partial device information, modify the Wi-Fi SSID, and even restart the device. This security flaw poses a significant risk to network security and necessitates prompt patching to mitigate the threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share