CVE-2024-7595

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Feb 5, 2025

Updated: Feb 6, 2025

Summary

CVE-2024-7595 is a vulnerability affecting GRE and GRE6 Protocols (RFC2784). The issue arises due to the lack of validation and verification of packet sources, enabling attackers to spoof traffic and route arbitrary data through an exposed network interface. This vulnerability poses significant risks, including spoofing, access control bypass, and unintended network behaviors, making it comparable to CVE-2020-10136.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xlHspa
https://www.cve.org/CVERecord?id=CVE-2024-7595
https://nvd.nist.gov/vuln/detail/CVE-2024-7595

Back to Vulnerability Database

CVE-2024-7595

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations