CVE-2024-48286
CVSS 3.1 Score 8.0 of 10 (high)
Details
Published Nov 21, 2024
CWE ID 77
Summary
CVE-2024-48286 is a newly disclosed vulnerability affecting the Linksys E3000 router running firmware version 1.0.06.002_US. Malicious actors can exploit this flaw by injecting commands into the diag_ping_start function, potentially gaining unauthorized access and control over the device. This vulnerability poses a serious risk to network security and requires immediate attention from users running the affected firmware. It is recommended that users update their firmware to the latest version to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- E3000