CVE-2024-4582

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published May 7, 2024

Updated: Jun 4, 2024

CWE ID 78

Summary

CVE-2024-4582 is a newly disclosed critical vulnerability that impacts Faraday GM8181 and GM828x up to version 20240429. The issue lies within an unknown function of the NTP Service and can be exploited through manipulation of the ntp_srv argument, resulting in os command injection. An attacker can execute this vulnerability remotely. The exploit has been made public, increasing the risk of potential attacks. It is strongly recommended to upgrade the affected component as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vzgban
https://www.cve.org/CVERecord?id=CVE-2024-4582
https://nvd.nist.gov/vuln/detail/CVE-2024-4582

Back to Vulnerability Database

CVE-2024-4582

CVSS 3.1 Score 7.3 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations