CVE-2024-48286
CVSS 3.1 Score 8.0 of 10 (high)
Details
Summary
CVE-2024-48286 is a newly disclosed vulnerability affecting the Linksys E3000 router running firmware version 1.0.06.002_US. Hackers can exploit this issue by injecting malicious commands into the diag_ping_start function, potentially gaining unauthorized access to the router's system and executing arbitrary code. Successful exploitation could lead to significant security risks, such as data theft, unauthorized network access, or even complete system compromise. Users are advised to update their firmware as soon as a patch becomes available to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- E3000