CVE-2024-46419

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 16, 2024
Updated: Sep 17, 2024
CWE ID 120

Summary

CVE-2024-46419 identifies a buffer overflow vulnerability in the TOTOLINK AC1200 T8 router, specifically within the setWizardCfg function when processing the ssid5g parameter. This vulnerability is rated as critical, with a CVSS base score of 9.8, indicating a high impact on confidentiality, integrity, and availability if exploited over a network without requiring user interaction or special privileges. Organizations using affected versions (v4.1.5cu.861_B20230220) are at risk of significant security breaches due to the potential for unauthorized access and data manipulation. To remediate this issue, users should update their devices to the latest firmware version as provided by TOTOLINK or apply any relevant patches that address this vulnerability. The exploitability of this vulnerability is considered low in complexity but poses serious risks given its high-impact rating.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share