CVE-2024-51512

CVSS 3.1 Score 5.5 of 10 (medium)

Attack Complexity low

Availability high

Privileges Required low

Confidentiality none

Integrity none

Scope unchanged

Details

Published Nov 5, 2024

Updated: Nov 7, 2024

CWE ID 20

Summary

CVE-2024-51512 is a newly identified vulnerability that lies in the WantAgent module's lack of verification for parameter types. This issue poses a threat to system availability, as a successful exploit could potentially lead to unwanted disruptions. The WantAgent module, by not properly validating input, leaves the door open for potential attackers to manipulate parameters and cause availability issues. The precise impact and exploitability of this vulnerability are still under investigation, but it is recommended that affected systems be updated as soon as a patch becomes available.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

HarmonyOS

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Submarine Cables Face Increasing Threats Amid Geopolitical Tensions and Limited Repair Capacity

US Violent Extremists Likely Shifting Focus to Targeted Physical Threats in 2025

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Know What Matters

For Customers

For Partners