CVE-2024-2495

CVSS 3.1 Score 8.2 of 10 (high)

Details

Published Mar 15, 2024
CWE ID 787

Summary

CVE-2024-2495 is a newly disclosed cryptographic key vulnerability found in the FriendlyWrt firmware version 2022-11-16.51b3d35. This issue poses a risk to the confidentiality and integrity of encrypted data, as an attacker could potentially exploit it to gain unauthorized access. The specific nature of the vulnerability involves a cryptographic key, and the extent of its impact is still under investigation. Users of the affected FriendlyWrt firmware are advised to apply the forthcoming patch as soon as it becomes available.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share