CVE-2024-48286

CVSS 3.1 Score 8.0 of 10 (high)

Details

Published Nov 21, 2024
CWE ID 77

Summary

CVE-2024-48286 is a newly disclosed vulnerability affecting the Linksys E3000 router running firmware version 1.0.06.002_US. Malicious actors can exploit this flaw by injecting commands into the diag_ping_start function, potentially gaining unauthorized access and control over the device. This vulnerability poses a serious risk to network security and requires immediate attention from users running the affected firmware. It is recommended that users update their firmware to the latest version to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share