CVE-2024-51012
CVSS 3.1 Score 5.7 of 10 (medium)
Details
Published Nov 5, 2024
CWE ID 120
Summary
CVE-2024-51012 is a newly identified vulnerability affecting Netgear R8500 v1.0.2.160 routers. The issue lies in the ipv6_fix.cgi file, where a stack overflow can be triggered through a maliciously crafted POST request to the ipv6_pri_dns parameter. Successful exploitation leads to a Denial of Service (DoS) condition for the affected device. This vulnerability poses a risk to network availability and should be addressed promptly through an updated firmware or patch from Netgear.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- R8 500