CVE-2024-52545

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Dec 3, 2024
CWE ID 125

Summary

CVE-2024-52545 is a newly disclosed vulnerability affecting the IQ Service, which listens on TCP port 9876. An unauthenticated attacker can exploit this issue to perform an out-of-bounds heap read. This vulnerability poses a serious risk, as it allows an attacker to access sensitive information without proper authorization. The vulnerability has been addressed in the latest firmware version 2.800.0000000.8.R.20241111. It is essential for users to install this update to mitigate the risk of an attack.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share