CVE-2024-47865

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Nov 20, 2024

Updated: Nov 21, 2024

CWE ID 306

Summary

CVE-2024-47865 is a critical vulnerability affecting Rakuten Turbo 5G firmware versions V1.3.18 and earlier. This issue involves a missing authentication mechanism for a critical function. An attacker, without needing any credentials, can exploit this vulnerability and manipulate the firmware on the device, either updating it or downgrading it. This poses a significant risk to the security and integrity of the affected devices.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0Ny1ob
https://www.cve.org/CVERecord?id=CVE-2024-47865
https://nvd.nist.gov/vuln/detail/CVE-2024-47865

Back to Vulnerability Database

CVE-2024-47865

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations