CVE-2024-41936

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 12, 2024
Updated: Aug 20, 2024
CWE ID 22

Summary

CVE-2024-41936 is a newly disclosed directory traversal vulnerability that poses a risk to Vonets industrial wifi bridge relays and wifi bridge repeaters with software versions 3.3.23.6 and prior. This issue allows unauthenticated remote attackers to access and read arbitrary files on affected devices, potentially leading to significant data exposure. Moreover, bypassing authentication is also a possible consequence of this vulnerability, increasing the threat level for targeted networks. Organizations utilizing these Vonets devices are advised to update their software as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share