CVE-2024-21454
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Apr 1, 2024
Updated: Jan 13, 2025
CWE ID 680
CWE ID 190
Summary
CVE-2024-21454 is a recently identified vulnerability in Automotive Telematics systems. The issue arises during the decoding process of the ToBeSignedMessage, leading to a Transient Denial of Service (DoS) condition. An attacker can exploit this vulnerability by sending specially crafted messages to the affected system, causing it to become unresponsive. This can potentially disrupt critical services and cause inconvenience to users. It is recommended that affected organizations apply the necessary patches or updates to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share