CVE-2024-54808: Buffer Overflow
First published: Mon Mar 31 2025(Updated: )
Netgear WNR854T 1.5.2 (North America) contains a stack-based buffer overflow vulnerability in the SetDefaultConnectionService function due to an unconstrained use of sscanf. The vulnerability allows for control of the program counter and can be utilized to achieve arbitrary code execution.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netgear WNR854T Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-54808?
CVE-2024-54808 is classified as a critical vulnerability due to the potential for arbitrary code execution.
How do I fix CVE-2024-54808?
To fix CVE-2024-54808, update the Netgear WNR854T firmware to the latest version that addresses this vulnerability.
What systems are affected by CVE-2024-54808?
CVE-2024-54808 affects the Netgear WNR854T firmware version 1.5.2 in North America.
What kind of attack could exploit CVE-2024-54808?
CVE-2024-54808 could be exploited to perform remote code execution due to stack-based buffer overflow.
Is there a workaround for CVE-2024-54808?
There are no effective workarounds for CVE-2024-54808; the best protection is to apply the firmware update immediately.
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/type
- agent/description
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- agent/author
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/event
- vendor/netgear
- canonical/netgear wnr854t firmware