CVE-2024-45722

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 6, 2024
Updated: Dec 10, 2024
CWE ID 1391

Summary

CVE-2024-45722: Ruijie Reyee OS versions between 2.206.x and 2.320.x are affected by a vulnerability where weak MQTT credentials are used. An attacker can exploit this issue by calculating valid login credentials, granting unauthorized access to affected systems. This could potentially lead to significant security risks, including unauthorized system control and data breaches. Organizations using these versions of Ruijie Reyee OS are strongly advised to apply the necessary patches or updates to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share