CVE-2024-33071

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 7, 2024

Updated: Oct 16, 2024

CWE ID 125

CWE ID 126

Summary

CVE-2024-33071 refers to a Transient Denial of Service (DoS) vulnerability affecting certain wireless LAN controllers. The issue arises when these controllers process the Management Beacon Sieve-element Identifier (MBSSID) Information Element (IE) in beacon frames, specifically when the IE length is zero. The vulnerability does not allow unauthorized access or data exfiltration; instead, it triggers an excessive processing load on the controller, potentially causing it to crash or become unresponsive, resulting in a denial of service condition.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vjt6jG
https://www.cve.org/CVERecord?id=CVE-2024-33071
https://nvd.nist.gov/vuln/detail/CVE-2024-33071

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Know What Matters

For Customers

For Partners

CVE-2024-33071

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations