CVE-2024-8022

CVSS 3.1 Score 3.5 of 10 (low)

Details

Published Aug 21, 2024
CWE ID 79

Summary

CVE-2024-8022 is a vulnerability affecting the Genexis Tilgin Home Gateway 322_AS0500-03_05_13_05, which allows for cross-site scripting (XSS) due to improper handling of the "Phone Number" parameter in a specific CGI script. This flaw can be exploited remotely, requiring low privileges and user interaction. The integrity impact is classified as low, with no confidentiality or availability impacts detected. To mitigate this risk, organizations should ensure that their devices are updated and apply security patches as they become available. As the exploit has been disclosed publicly, it poses a potential threat to organizations using affected products.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share