CVE-2024-39791
Published: 12 August 2024
Summary
CVE-2024-39791 is a critical-severity Stack-based Buffer Overflow (CWE-121) vulnerability in Vonets Var1200-H Firmware. Its CVSS base score is 10.0 (Critical).
Operationally, ranked in the top 12.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
Deeper analysis
CVE-2024-39791 is a stack-based buffer overflow vulnerability, also referenced under CWE-121 and CWE-787, that affects Vonets industrial WiFi bridge relays and WiFi bridge repeaters running software versions 3.3.23.6.9 and earlier. The flaw resides in the devices' network-facing components and carries a maximum CVSS score of 10.0 due to its unauthenticated remote exploitability and full impact on confidentiality, integrity, and availability.
An unauthenticated remote attacker can send specially crafted network packets to trigger the overflow, enabling arbitrary code execution on the affected devices without any user interaction or credentials. Successful exploitation grants complete control over the bridge or repeater, allowing an adversary to intercept, manipulate, or disrupt industrial wireless traffic.
The sole referenced advisory from CISA (ICSA-24-214-08) addresses the issue in the context of industrial control systems and directs operators to vendor guidance for available firmware updates or configuration changes that mitigate the exposure.
EPSS for the CVE rose from lower values to a peak of 0.0604 before receding to the current 0.0321, indicating a period of increased exploitation interest after disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-38236
Vulnerability details
Stack-based buffer overflow vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to execute arbitrary code.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Out-of-bounds writes that corrupt control flow or inject shellcode are rendered non-executable by the same memory protections.