Sensitive System Information Exposed in Unauthorized Control Sphere
CVE-2024-47799

3.5LOW

Key Information:

Vendor: Softbank Corp.
Status: Mesh Wi-fi Router Rp562b
Vendor: CVE Published:; 12 November 2024

🔔 Create Softbank Corp. Vulnerability Alert

What is CVE-2024-47799?

Exposure of sensitive system information to an unauthorized control sphere issue exists in Mesh Wi-Fi router RP562B firmware version v1.0.2 and earlier. If this vulnerability is exploited, a network-adjacent authenticated attacker may obtain information of the other devices connected through the Wi-Fi.

Affected Version(s)

Mesh Wi-Fi router RP562B firmware version v1.0.2 and earlier

References

https://jvn.jp/en/vu/JVNVU90676195/

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 12, 2024
Vulnerability Reserved
Oct 30, 2024