CVE-2024-51014

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Published Nov 5, 2024

CWE ID 120

Summary

CVE-2024-51014 refers to a stack overflow vulnerability in Netgear XR300 v1.0.3.78. This issue arises due to a flaw in the handling of the ssid_an parameter in bridge_wireless_main.cgi. An attacker can exploit this vulnerability by sending a maliciously crafted POST request, resulting in a denial of service (DoS) condition. The stack overflow permits the attacker to inject and execute arbitrary code, potentially leading to more severe consequences beyond a simple DoS attack. It is imperative that users of affected Netgear devices apply the appropriate software patch to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/z7TAjN
https://www.cve.org/CVERecord?id=CVE-2024-51014
https://nvd.nist.gov/vuln/detail/CVE-2024-51014

Back to Vulnerability Database

CVE-2024-51014

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations