CVE-2024-46451

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 16, 2024
Updated: Sep 17, 2024
CWE ID 120

Summary

CVE-2024-46451 identifies a buffer overflow vulnerability in the TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220, specifically within the setWiFiAclRules function via the desc parameter. This vulnerability can be exploited remotely without requiring user interaction, posing a critical threat with a CVSS base score of 9.8, indicating high potential impacts on confidentiality, integrity, and availability. Affected organizations should update their firmware to mitigate the risks associated with this vulnerability, as it allows attackers to potentially execute arbitrary code on the device. The exploit complexity is low, meaning that even less skilled attackers could take advantage of this flaw. For additional details and remediation steps, affected users can refer to third-party advisories available online.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share