Cyber Resilience

CVE-2024-39791

Critical

Published: 12 August 2024

Published
12 August 2024
Modified
20 August 2024
KEV Added
Patch
CVSS Score v4 10.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0321 87.3th percentile
Risk Priority 22 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-39791 is a critical-severity Stack-based Buffer Overflow (CWE-121) vulnerability in Vonets Var1200-H Firmware. Its CVSS base score is 10.0 (Critical).

Operationally, ranked in the top 12.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

Deeper analysis

CVE-2024-39791 is a stack-based buffer overflow vulnerability, also referenced under CWE-121 and CWE-787, that affects Vonets industrial WiFi bridge relays and WiFi bridge repeaters running software versions 3.3.23.6.9 and earlier. The flaw resides in the devices' network-facing components and carries a maximum CVSS score of 10.0 due to its unauthenticated remote exploitability and full impact on confidentiality, integrity, and availability.

An unauthenticated remote attacker can send specially crafted network packets to trigger the overflow, enabling arbitrary code execution on the affected devices without any user interaction or credentials. Successful exploitation grants complete control over the bridge or repeater, allowing an adversary to intercept, manipulate, or disrupt industrial wireless traffic.

The sole referenced advisory from CISA (ICSA-24-214-08) addresses the issue in the context of industrial control systems and directs operators to vendor guidance for available firmware updates or configuration changes that mitigate the exposure.

EPSS for the CVE rose from lower values to a peak of 0.0604 before receding to the current 0.0321, indicating a period of increased exploitation interest after disclosure.

EU & UK References

Vulnerability details

Stack-based buffer overflow vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to execute arbitrary code.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

vonets
var1200-h firmware
≤ 3.3.23.6.9
vonets
var1200-l firmware
≤ 3.3.23.6.9
vonets
var600-h firmware
≤ 3.3.23.6.9
vonets
vap11ac firmware
≤ 3.3.23.6.9
vonets
vap11g-500s firmware
≤ 3.3.23.6.9
vonets
vbg1200 firmware
≤ 3.3.23.6.9
vonets
vap11s-5g firmware
≤ 3.3.23.6.9
vonets
vap11s firmware
≤ 3.3.23.6.9
vonets
var11n-300 firmware
≤ 3.3.23.6.9
vonets
vap11g-300 firmware
≤ 3.3.23.6.9
+4 more product configuration(s) — see NVD for full list

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-787

Out-of-bounds writes that corrupt control flow or inject shellcode are rendered non-executable by the same memory protections.

References