CVE-2024-39607

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Published Aug 1, 2024
CWE ID 78

Summary

CVE-2024-39607 is a newly discovered vulnerability affecting ELECOM wireless LAN routers. This issue allows an administrative user to execute arbitrary OS commands through a specially crafted request. By exploiting this command injection vulnerability, an attacker can gain unauthorized access to the router and potentially take control of the entire network. This poses a significant security risk, as it can lead to data theft, unauthorized network access, and other malicious activities. Users are strongly advised to update their routers as soon as a patch becomes available to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share