CVE-2024-4021

Summary

CVE-2024-4021 is a newly disclosed vulnerability affecting the Keenetic KN-1010, KN-1410, KN-1711, KN-1810, and KN-1910 routers running up to version 4.1.2.15. This vulnerability lies within an unknown functionality of the /ndmComponents.js file in the Configuration Setting Handler component. Manipulation of this component leads to information disclosure, making it a remote information disclosure vulnerability. The exploit for this vulnerability has been made public, increasing the risk of potential attacks. The identifier VDB-261673 has been assigned to this vulnerability. The vendor is currently working on a fix, which is expected to be released by the end of 2024.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.