CVE-2024-51018

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Published Nov 5, 2024
CWE ID 120

Summary

CVE-2024-51018 is a newly disclosed vulnerability affecting Netgear R7000P v1.3.3.154. This issue involves a stack overflow in the pptp_user_netmask parameter of the pptp.cgi file. An attacker can exploit this vulnerability by sending a crafted POST request, resulting in a Denial of Service (DoS) condition. The stack overflow allows the attacker to inject malicious data into the system, potentially leading to more serious consequences beyond just a DoS attack. It is recommended that affected users upgrade to the latest firmware version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share