CVE-2024-45163

CVSS 9.1 CRITICALEPSS 0.8%CWE-400

The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC (command and control) server. Unauthenticated sessions remain open, causing resource consumption. For example, an attacker can send a recognized username (such as root), or can send arbitrary data.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Produtos afetados

n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://cypressthatkid.medium.com/remote-dos-exploit-found-in-mirai-botnet-source-code-27a1aad284f1 https://flowtriq.com/blog/cve-2024-45163-mirai-botnet-kill-switch https://pastebin.com/6tqHnCva https://youtu.be/aJkvSr85ML8