CVE-2024-11980

Published Nov 29, 2024

Last updated a month ago

CVSS high 8.6

Overview

Description
Certain modes of routers from Billion Electric have a Missing Authentication vulnerability, allowing unauthenticated remote attackers to directly access the specific functionality to obtain partial device information, modify the WiFi SSID, and restart the device.
Source
twcert@cert.org.tw
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
8.6
Impact score
4.7
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
Severity
HIGH

Weaknesses

twcert@cert.org.tw
CWE-306

Social media

Hype score
Not currently trending

  1. Threat Alert: CVE-2024-11980 (CVSS 10): Critical Flaw in Billion Electric Routers CVE-2024-11980 CVE-2024-11981 CVE-2024-11982 Severity: ⚠️ Critical Maturity: 💢 Emerging Learn more: https://t.co/nNI4w9ueTZ #CyberSecurity #ThreatIntel #InfoSec

    @fletch_ai

    4 Dec 2024

    13 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. CVE-2024-11980 (CVSS:8.6, HIGH) is Awaiting Analysis. Certain modes of routers from Billion Electric have a Missing Authentication vulnerability, allowing unauthenticated rem..https://t.co/DeSjKtd9X0 #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre

    @cracbot

    4 Dec 2024

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2024-11980 (CVSS 10): Critical Flaw in Billion Electric Routers https://t.co/0lAAFO7Zzs

    @Dinosn

    2 Dec 2024

    3848 Impressions

    13 Retweets

    32 Likes

    6 Bookmarks

    0 Replies

    0 Quotes

  4. CVE-2024-11980 Missing Authentication Vulnerability in Billion Electric Routers Allowing Remote Access Some routers from Billion Electric have a Missing Authentication problem. This lets remote attackers access c... https://t.co/IBbq6b2col

    @VulmonFeeds

    30 Nov 2024

    48 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. CVE-2024-11980 Certain modes of routers from Billion Electric have a Missing Authentication vulnerability, allowing unauthenticated remote attackers to directly access the specific … https://t.co/2EmyKflKCX

    @CVEnew

    29 Nov 2024

    526 Impressions

    1 Retweet

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  6. [CVE-2024-11980: CRITICAL] Billion Electric routers have a critical vulnerability allowing unauthorized access for device info alteration and restart. Protect your network with immediate action. #CyberSecurity#cybersecurity,#vulnerability https://t.co/Kcj4RMr3xv https://t.co/CgfQ

    @CveFindCom

    29 Nov 2024

    24 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References