CVE-2024-39815

Vonets WiFi Bridges Improper Check or Handling of Exceptional Conditions

CVSS 9.4 CRITICALEPSS 0.8%CWE-703

Improper check or handling of exceptional conditions vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to cause a denial of service. A specially-crafted HTTP request to pre-authentication resources can crash the service.

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Affected products

Vonets · VAP11AC Vonets · VAP11G Vonets · VAP11G-300 Vonets · VAP11G-500 Vonets · VAP11G-500S Vonets · VAP11N-300 Vonets · VAP11S Vonets · VAP11S-5G Vonets · VAR11N-300 Vonets · VAR1200-H Vonets · VAR1200-L Vonets · VAR600-H Vonets · VBG1200 Vonets · VGA-1000

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-214-08