- Description
- Missing authentication for critical function vulnerability exists in Rakuten Turbo 5G firmware version V1.3.18 and earlier. If this vulnerability is exploited, a remote unauthenticated attacker may update or downgrade the firmware on the device.
- Source
- vultures@jpcert.or.jp
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 5.3
- Impact score
- 1.4
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
- Severity
- MEDIUM
- vultures@jpcert.or.jp
- CWE-306
- Hype score
- Not currently trending
CVE-2024-47865 Missing authentication for critical function vulnerability exists in Rakuten Turbo 5G firmware version V1.3.18 and earlier. If this vulnerability is exploited, a remo… https://t.co/P6as8Xfq8O
@CVEnew
20 Nov 2024
159 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
書き方がなんか面白い。これコマンドインジェクションでできるという話だったのかな 「当該デバイスのファームウェアをアップデートされたりダウングレードされたりする(CVE-2024-47865)」 "JVNVU#90667116: Rakuten Turbo 5Gにおける複数の脆弱性" https://t.co/27G7KSvkRF
@azu_re
19 Nov 2024
150 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-47865 Rakuten 5G Turbo - Exploit Wrapper API Overview This repository p... https://t.co/w0xlvEV1tp Customizable Vulnerability Alerts: https://t.co/U7998fz7yk
@VulmonFeeds
18 Nov 2024
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes