CVE-2024-45558
CVSS 3.1 Score 7.5 of 10 (high)
Details
Summary
CVE-2024-45558 is a newly disclosed vulnerability that affects a specific driver. The issue arises when the driver fails to check the length of an IE (Information Element) before attempting to access the EXTN element ID within a per STA profile. This oversight can result in a Transient Denial of Service (DoS) condition as the driver encounters unexpected data, causing instability or crashes. Malicious actors could exploit this vulnerability to disrupt services by sending specially crafted data packets to the targeted system. It is recommended that affected organizations apply patches or updates as soon as they become available to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.