CVE-2024-8079

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 22, 2024
Updated: Aug 23, 2024
CWE ID 120

Summary

CVE-2024-8079 is a critical vulnerability affecting the TOTOLINK AC1200 T8 router, specifically in version 4.1.5cu.862_B20230228, related to the function exportOvpn, causing a buffer overflow that can be exploited remotely. The vulnerability poses significant risks to organizations, with potentially high impacts on confidentiality, integrity, and availability due to its low attack complexity and requirement for minimal privileges. Remediation steps include updating to a patched version or disabling the vulnerable functionality until a fix is available, although the vendor has not responded to disclosure attempts. The CVSS score for this vulnerability is 9.0, indicating its severity level and potential for exploitation. Organizations using affected products should assess their exposure and implement necessary security measures promptly.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share