CVE-2024-11980
CVSS 3.1 Score 8.6 of 10 (high)
Details
Published Nov 29, 2024
CWE ID 306
Summary
CVE-2024-11980 is a newly identified vulnerability affecting certain models of routers from Billion Electric. This issue involves a missing authentication feature, making it possible for unauthenticated remote attackers to directly access specific functionality. The consequences of this vulnerability include the ability to obtain partial device information, modify the Wi-Fi SSID, and even restart the device. This security flaw poses a significant risk to network security and necessitates prompt patching to mitigate the threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share