CVE-2024-8459

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Sep 30, 2024

Updated: Oct 4, 2024

CWE ID 312

Summary

CVE-2024-8459 is a newly disclosed vulnerability affecting certain switch models from PLANET Technology. The issue lies in the storage of SNMPv3 users' passwords in plaintext within the configuration files, which can be accessed remotely by attackers with administrator privileges. This allows the assailants to obtain the SNMPv3 user credentials, potentially granting them unauthorized access to the affected network devices. This vulnerability poses a serious risk to network security and requires immediate attention from administrators to mitigate the threat. It is essential to update the affected devices with the latest firmware to remedy this issue and secure the network against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2024-8459

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations