CVE-2024-50995

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Published Nov 5, 2024
CWE ID 120

Summary

CVE-2024-50995 is a stack overflow vulnerability affecting Netgear R8500 v1.0.2.160. This issue is located in the usb_remote_smb_conf.cgi file and can be exploited via a crafted POST request targeting the share_name parameter. Successful exploitation results in a denial of service (DoS) condition. Attackers can cause the device to crash, leading to availability disruption and potential service interruptions. Users are advised to update their Netgear R8500 firmware to address this vulnerability and secure their networks against potential DoS attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share