CVE-2024-3286
CVSS 3.1 Score 8.1 of 10 (high)
Details
Published May 16, 2024
Updated: May 17, 2024
CWE ID 942
CWE ID 697
Summary
CVE-2024-3286 is a newly identified buffer overflow vulnerability affecting some Lenovo printers. An unauthenticated user can exploit this flaw by sending a malicious web request, causing the device to restart. This vulnerability poses a significant risk as it allows attackers to disrupt printer operations without needing valid credentials. Successful exploitation could lead to denial-of-service attacks or even potential unauthorized access to the printer system. Lenovo is urged to release a patch as soon as possible to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Johnson Controls