CVE-2024-8887
Published: 18 September 2024
Summary
CVE-2024-8887 is a critical-severity Improper Validation of Specified Quantity in Input (CWE-1284) vulnerability in Circutor Q-Smt Firmware. Its CVSS base score is 10.0 (Critical).
Operationally, ranked at the 22.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-49457
- 🇪🇸 INCIBE: www.incibe.es
Vulnerability details
CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service (DoS) attack if an attacker with access to the web service bypasses the authentication mechanisms on the login page, allowing the attacker to use all…
more
the functionalities implemented at web level that allow interacting with the device.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.