CVE-2024-8748

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 3, 2024
CWE ID 120

Summary

CVE-2024-8748 is a buffer overflow vulnerability affecting the packet parser in Zyxel's third-party library "libclinkc," which is incorporated into VMG8825-T50K firmware versions up to V5.50(ABOM.8.4)C0. This issue allows an attacker to send a specially crafted HTTP POST request to a susceptible device, potentially causing a temporary Denial of Service (DoS) condition against its web management interface.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share