Unpatched Vulnerability Could Lead to Remote Denial of Service Attacks on BASrouter BACnet BASRT-B 2.7.2
CVE-2024-9787

5.3MEDIUM

Key Information:

Vendor

Contemporary Control System

Status
Basrouter Bacnet Basrt-b
Vendor
CVE Published:
10 October 2024

Badges

👾 Exploit Exists

What is CVE-2024-9787?

A vulnerability found in the Contemporary Control System BASrouter BACnet BASRT-B 2.7.2 impacts the UDP Packet Handler component, leading to a denial of service. This vulnerability enables remote attackers to disrupt the normal functioning of the device. The exploit has been made public, increasing the risk of attacks. Despite early notification, there was no response from the vendor regarding this issue, underlining the urgency for users to implement protective measures to safeguard their network infrastructure.

Affected Version(s)

BASrouter BACnet BASRT-B 2.7.2

References

https://vuldb.com/?id.279939
vdb-entry
https://vuldb.com/?ctiid.279939
signaturepermissions-required
https://vuldb.com/?submit.414499
third-party-advisory

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

isZzzzz (VulDB User)
.