CVE-2024-4022
CVSS V2 None
CVSS V3 None
Description
A vulnerability was found in Keenetic KN-1010, KN-1410, KN-1711, KN-1810 and KN-1910 up to 4.1.2.15. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /version.js of the component Version Data Handler. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-261674 is the identifier assigned to this vulnerability. NOTE: The vendor is aware of this issue and plans to fix it by the end of 2024.
Overview
- CVE ID
- CVE-2024-4022
- Assigner
- VulDB
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-04-21T10:31:04.754Z
- Last Modified Date
- 2024-04-22T12:38:32.107Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://vuldb.com/?id.261674 | vdb-entry |
| https://vuldb.com/?ctiid.261674 | signature permissions-required |
| https://vuldb.com/?submit.316276 | third-party-advisory |
| https://netsecfish.notion.site/Information-Disclosure-in-Keenetic-Router-d4a12a499cef4acf80e191bdaf20c151?pvs=4 | exploit |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-4022 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4022 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-23 22:16:07 | Added to TrackCVE |