CVE-2024-54984

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 19, 2024

Updated: Jan 7, 2025

CWE ID 306

Summary

CVE-2024-54984 is a vulnerability affecting Quectel's BG96 and BG96MAR02A08M1G devices. According to reports, an attacker can craft a NAS (Narrowband Application Protocol) message to bypass the authentication process. This potential security weakness could enable unauthorized access to the device. However, it's important to note that the supplier of these devices has disputed this claim. The full implications and exploitability of this vulnerability are still under investigation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/1Tsaei
https://www.cve.org/CVERecord?id=CVE-2024-54984
https://nvd.nist.gov/vuln/detail/CVE-2024-54984

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

Know What Matters

For Customers

For Partners

CVE-2024-54984

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations