CVE-2024-46383

low-risk
Published 2024-11-15

Hathway Skyworth Router CM5100-511 v4.1.1.24 was discovered to store sensitive information about USB and Wifi connected devices in plaintext.

Do I need to act?

-
0.76% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
2
CVSS 2.4/10 Low
PHYSICAL / LOW complexity

References (2)

http://skyworth.com
https://github.com/nitinronge91/Sensitive-Information-disclosure-via-SPI-flash-f...
18
/ 100
low-risk
Severity 10/34 · Low
Exploitability 3/34 · Minimal
Exposure 5/34 · Minimal