CVE-2024-34682

CVSS 3.1 Score 2.4 of 10 (low)

Details

Published Nov 6, 2024

Updated: Nov 13, 2024

Summary

CVE-2024-34682 is a newly disclosed cybersecurity vulnerability affecting Settings prior to the SMR Nov-2024 Release 1. This issue grants physical attackers unauthorized access to stored WiFi passwords in Maintenance Mode through an improper authorization mechanism. Successful exploitation lets attackers gain unauthorized network access, potentially leading to further compromise of the affected system. It is crucial for organizations to apply the SMR Nov-2024 Release 1 patch as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vzgXps
https://www.cve.org/CVERecord?id=CVE-2024-34682
https://nvd.nist.gov/vuln/detail/CVE-2024-34682

Back to Vulnerability Database

CVE-2024-34682

CVSS 3.1 Score 2.4 of 10 (low)

Details

Summary

Advisories, Assessments, and Mitigations