Vulnerability Details CVE-2024-54808
Netgear WNR854T 1.5.2 (North America) contains a stack-based buffer overflow vulnerability in the SetDefaultConnectionService function due to an unconstrained use of sscanf. The vulnerability allows for control of the program counter and can be utilized to achieve arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.3%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2024-54808
-
cpe:2.3:h:netgear:wnr854t:-
-
cpe:2.3:o:netgear:wnr854t_firmware:1.5.2