CVE-2024-47865

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Nov 20, 2024

Updated: Nov 21, 2024

CWE ID 306

Summary

CVE-2024-47865 is a critical vulnerability affecting Rakuten Turbo 5G firmware versions V1.3.18 and earlier. This issue involves a missing authentication mechanism for a crucial function, allowing unauthenticated remote attackers to manipulate the firmware on affected devices, either by updating or downgrading it. Successful exploitation of this vulnerability could lead to significant security risks, underscoring the importance of applying patches or updates as soon as they become available.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0Ny1ob
https://www.cve.org/CVERecord?id=CVE-2024-47865
https://nvd.nist.gov/vuln/detail/CVE-2024-47865

Back to Vulnerability Database

CVE-2024-47865

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations