CVE-2024-29082

CVSS 3.1 Score 8.6 of 10 (high)

Details

Published Aug 12, 2024

Updated: Aug 20, 2024

CWE ID 284

Summary

CVE-2024-29082 is an industrial wifi vulnerability affecting Vonets bridge relays and repeaters running software versions 3.3.23.6.9 and earlier. This issue involves improper access control, granting unauthenticated attackers the ability to bypass authentication and execute a factory reset on the devices through unsecured goform endpoints. Successful exploitation may result in loss of configuration, leading to potential disruption of industrial processes or networks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Vonets

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xWL49A
https://www.cve.org/CVERecord?id=CVE-2024-29082
https://nvd.nist.gov/vuln/detail/CVE-2024-29082

Back to Vulnerability Database

CVE-2024-29082

CVSS 3.1 Score 8.6 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations