CVE-2024-28811

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Sep 30, 2024

Updated: Nov 25, 2024

CWE ID 94

Summary

CVE-2024-28811 is a newly identified vulnerability affecting the Infinera hiT 7300 with software version 5.60.50. This issue permits a remote, privileged attacker to execute applications located in a particular OS directory through HTTP requests, posing a significant security risk. The web application's lack of proper input validation enables this exploit, potentially leading to unintended system execution and potential compromise. Mitigation strategies include updating to the latest software version, implementing access controls, and employing network security measures.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vJDOQh
https://www.cve.org/CVERecord?id=CVE-2024-28811
https://nvd.nist.gov/vuln/detail/CVE-2024-28811

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2024-28811

CVSS 3.1 Score 3.3 of 10 (low)

Details

Summary

Advisories, Assessments, and Mitigations