CVE-2024-11982
CVSS 3.1 Score 7.2 of 10 (high)
Details
Published Nov 29, 2024
CWE ID 256
Summary
CVE-2024-11982 is a vulnerability affecting certain Billion Electric router models. This issue allows remote attackers with administrator privileges to access the user settings page and retrieve plaintext passwords, posing a significant security risk. The router's storage of passwords in plaintext format is the root cause of this vulnerability, making it essential for users to apply the necessary patches as soon as they become available. Failure to do so could result in unauthorized access to affected networks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share