CVE-2024-37816

CVSS 3.1 Score 4.2 of 10 (medium)

Details

Published Nov 27, 2024
CWE ID 120

Summary

CVE-2024-37816 is a newly disclosed vulnerability affecting the Quectel EC25-EUX EC25EUXGAR08A05M1G device. The issue was identified as a stack overflow, which means that the device's memory can be overwritten with malicious data beyond its intended limits. This could potentially lead to the execution of arbitrary code, allowing an attacker to gain unauthorized access or control over the affected device. The exact implications and potential impact of this vulnerability are still under investigation. Users are advised to apply any available patches or updates as soon as possible to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share