CVE-2024-3286

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published May 16, 2024
Updated: May 17, 2024
CWE ID 942
CWE ID 697

Summary

CVE-2024-3286 is a newly identified buffer overflow vulnerability affecting some Lenovo printers. An unauthenticated user can exploit this flaw by sending a malicious web request, causing the device to restart. This vulnerability poses a significant risk as it allows attackers to disrupt printer operations without needing valid credentials. Successful exploitation could lead to denial-of-service attacks or even potential unauthorized access to the printer system. Lenovo is urged to release a patch as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share