CVE-2024-2415

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 13, 2024
CWE ID 78

Summary

CVE-2024-2415 is a command injection vulnerability that affects the Movistar 4G router with version ES_WLD71-T1_v2.0.201820. This vulnerability allows an authenticated user to execute commands within the router by sending a POST request to the URL '/cgi-bin/gui.cgi'. The risk score for this vulnerability is 25, indicating a high severity. The base score of 7.8 suggests a significant potential danger to organizations as it can lead to a compromise of confidentiality and integrity. The exploitability score is 1.8, indicating a relatively low difficulty level for attackers. Remediation measures should be taken promptly to address this vulnerability and prevent potential attacks.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-2415 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options