CVE-2024-38405

Summary

CVE-2024-38405 is a newly identified transient Denial of Service (DoS) vulnerability. This issue arises during the processing of certain Control Unit (CU) information within the Routing and Remote Access Information Element (RNR IE). A potential attacker could exploit this vulnerability by sending specially crafted packets to the affected system, causing it to become unresponsive or crash temporarily. The exact cause of the DoS condition is related to the CU information processing logic, making it essential for vendors to release patches as soon as possible to mitigate the risk of successful attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.