Description

A CWE-126 “Buffer Over-read” was discovered affecting the 130.8005 TCP/IP Gateway running firmware version 12h. The information disclosure can be triggered by leveraging a memory leak affecting the web server. A remote unauthenticated attacker can exploit this vulnerability in order to leak valid authentication tokens from the process memory associated to users currently logged to the system and bypass the authentication mechanism.

INFO

Published Date :

2025-02-13T15:59:23.264Z

Last Modified :

2025-02-13T16:54:02.337Z

Source :

Nozomi
AFFECTED PRODUCTS

The following products are affected by CVE-2024-12011 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-12011.

URL Resource
https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2024-12011 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact