CVE-2024-51017

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Published Nov 5, 2024
CWE ID 120

Summary

CVE-2024-51017 is a newly disclosed vulnerability in Netgear R7000P v1.3.3.154. This issue involves a stack overflow in the l2tp_user_netmask parameter of the l2tp.cgi file. Attackers can exploit this flaw by crafting a malicious POST request, leading to a Denial of Service (DoS) condition on the affected device. The vulnerability allows an attacker to overload the system, rendering it unresponsive to legitimate traffic. Network administrators are advised to update their devices to the latest firmware to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share