CVE-2024-51019

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Published Nov 5, 2024
CWE ID 120

Summary

CVE-2024-51019 is a newly discovered vulnerability affecting the Netgear R7000P v1.3.3.154 firmware. This issue involves a stack overflow in the pppoe_localnetmask parameter at pppoe.cgi. An attacker can exploit this vulnerability by sending a maliciously crafted POST request, leading to a Denial of Service (DoS) condition. The stack overflow allows the attacker to inject excessive data, causing the affected device to crash and potentially preventing legitimate users from accessing network services.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share