CVE-2024-8078

Summary

CVE-2024-8078 is a critical vulnerability identified in the TOTOLINK AC1200 T8 router running firmware version 4.1.5cu.862_B20230228, which allows for remote exploitation through the function setTracerouteCfg, resulting in a buffer overflow. This vulnerability poses significant risks to organizations as it can cause high impacts on confidentiality, integrity, and availability of the device, with a CVSS base score of 8.8 indicating a high severity level. The attack requires low privileges and no user interaction, making it relatively easy to exploit remotely. To remediate this vulnerability, organizations are advised to apply any available patches from the vendor or alternative measures to secure their network devices until an official fix is released. Despite attempts to contact the vendor for a response regarding this issue, there has been no communication received as of yet.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.