CVE-2024-39607

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Published Aug 1, 2024

CWE ID 78

Summary

CVE-2024-39607 is a newly discovered vulnerability affecting ELECOM wireless LAN routers. This issue allows an administrative user to execute arbitrary OS commands through a specially crafted request. By exploiting this command injection vulnerability, an attacker can gain unauthorized access to the router and potentially take control of the entire network. This poses a significant security risk, as it can lead to data theft, unauthorized network access, and other malicious activities. Users are strongly advised to update their routers as soon as a patch becomes available to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xS3m97
https://www.cve.org/CVERecord?id=CVE-2024-39607
https://nvd.nist.gov/vuln/detail/CVE-2024-39607

Back to Vulnerability Database

CVE-2024-39607

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations