CVE-2024-57545
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Jan 21, 2025
Updated: Jan 22, 2025
CWE ID 120
Summary
CVE-2024-57545 is a newly discovered buffer overflow vulnerability affecting the Linksys E8450 v1.2.00.360516 firmware. The issue stems from insufficient validation of user input in the parsed field 'hidden_dhcp_num'. This flaw enables an attacker to surreptitiously inject malicious data into the stack, potentially leading to arbitrary code execution with the privileges of the affected system. The vulnerability poses a significant risk if exploited, necessitating an immediate update to the affected firmware.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Linksys E8450
Affected Vendors
- Linksys