CVE-2024-51016

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Published Nov 5, 2024
CWE ID 120

Summary

CVE-2024-51016 is a newly identified vulnerability affecting the Netgear XR300 v1.0.3.78 firmware. This issue involves a stack overflow, which can be triggered by sending a maliciously crafted POST request to the usb_approve.cgi interface. The vulnerability leads to a Denial of Service (DoS) condition and could potentially be exploited by attackers to disrupt the targeted system's functionality. Users are strongly advised to update their firmware to a version that addresses this issue to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share