Cyber Resilience

CVE-2024-48456

High

Published: 06 January 2025

Published
06 January 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score 0.8258 99.3th percentile
Risk Priority 65 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-48456 is a high-severity Out-of-bounds Read (CWE-125) vulnerability. Its CVSS base score is 7.5 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 0.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SC-7 (Boundary Protection) and SI-10 (Information Input Validation).

Deeper analysis

CVE-2024-48456 is an information disclosure vulnerability affecting the web interface of multiple Netis router models and firmware versions, including Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582, Wifi 11AC Router NC65 3.0.0.3749, NC63 3.0.0.3327 and 3.0.0.3503, NC21 3.0.0.3800, 3.0.0.3500 and 3.0.0.3329, and Wifi Router MW5360 1.0.1.3442 and 1.0.1.3031. The flaw resides in the change admin password page, where the password parameter can be abused to leak sensitive data, corresponding to CWE-125 and carrying a CVSS 3.1 score of 7.5.

A remote attacker with no credentials or user interaction can target the exposed web interface over the network to extract sensitive information such as administrative credentials. The attack requires only network reachability to the router management page and succeeds due to insufficient access controls or input handling around the password parameter.

The single provided reference points to a GitHub project view without detailing patches or mitigation steps. The associated EPSS score stands at 0.8258 with no indicated change from a lower baseline.

EU & UK References

Vulnerability details

An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0.0.3749 and Netis Wifi 11AC Router NC63 3.0.0.3327 and 3.0.0.3503 and Netis Wifi 11AC Router NC21 3.0.0.3800, 3.0.0.3500 and 3.0.0.3329 and Netis Wifi Router…

more

MW5360 1.0.1.3442 and 1.0.1.3031 allows a remote attacker to obtain sensitive information via the parameter password at the change admin password page at the router web interface.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1552 Unsecured Credentials Credential Access
Adversaries may search compromised systems to find and obtain insecurely stored credentials.
Why these techniques?

Direct unauthenticated exploitation of public web interface (T1190) yields admin credentials via out-of-bounds read, enabling credential access (T1552).

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2025-55100Shared CWE-125
CVE-2025-54950Shared CWE-125
CVE-2026-22855Shared CWE-125
CVE-2026-23455Shared CWE-125
CVE-2026-41415Shared CWE-125
CVE-2024-48855Shared CWE-125
CVE-2026-34941Shared CWE-125
CVE-2026-3055Shared CWE-125
CVE-2025-63656Shared CWE-125
CVE-2026-34235Shared CWE-125

Affected Assets

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Validates inputs like the 'password' parameter to prevent out-of-bounds reads that disclose sensitive information via crafted requests to the router web interface.

prevent

Requires timely remediation of flaws such as the out-of-bounds read vulnerability in affected Netis router firmware to eliminate the information disclosure risk.

prevent

Enforces boundary protection to restrict network access to the vulnerable router web management interface, preventing unauthenticated remote exploitation.

References