CVE-2024-23627

CVSS 3.1 Score 9.0 of 10 (high)

Details

Published Jan 26, 2024
Updated: Feb 1, 2024
CWE ID 77

Summary

CVE-2024-23627 is a command injection vulnerability that affects the Motorola MR2600. This vulnerability allows remote attackers to execute commands by exploiting the 'SaveStaticRouteIPv4Params' parameter. Although authentication is required, it can be bypassed. The vulnerability has a CVSS score of 7.7 and a base severity of CRITICAL, with high impacts on integrity and confidentiality. The exploitability score is 2.3, and the privileges required are low. Organizations using this product should take immediate action to remediate the vulnerability to prevent potential harm to their systems and data.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-23627 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options