CVE-2024-47146

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Dec 6, 2024
Updated: Dec 10, 2024
CWE ID 402

Summary

CVE-2024-47146 is a vulnerability affecting Ruijie Reyee OS versions 2.206.x through 2.320.x. This issue enables an attacker to obtain a device's serial number by being physically proximate and sniffing the RAW WIFI signal. The vulnerability is significant as it can potentially allow unauthorized access to network devices, posing a risk to data security and privacy. Attackers can exploit this vulnerability without requiring any authentication or authorization, making it a potential threat in open or shared Wi-Fi networks. Organizations using affected Ruijie Reyee OS versions are advised to apply the necessary patches as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share