Cryptographic key vulnerability encoded in the FriendlyWrt firmware affecting version 2022-11-16.51b3d35. This vulnerability could allow an attacker to compromise the confidentiality and integrity of encrypted data.
References
Configurations
History
24 Mar 2025, 15:20
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:friendlyelec:friendlywrt:2022-11-16:*:*:*:*:*:*:* | |
| References | () https://www.incibe.es/en/incibe-cert/notices/aviso/cryptographic-key-plain-text-vulnerability-friendlyelecs-friendlywrt - Third Party Advisory | |
| First Time |
Friendlyelec friendlywrt
Friendlyelec |
21 Nov 2024, 09:09
| Type | Values Removed | Values Added |
|---|---|---|
| Summary |
|
|
| References | () https://www.incibe.es/en/incibe-cert/notices/aviso/cryptographic-key-plain-text-vulnerability-friendlyelecs-friendlywrt - |
15 Mar 2024, 13:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-03-15 13:15
Updated : 2025-03-24 15:20
NVD link : CVE-2024-2495
Mitre link : CVE-2024-2495
CVE.ORG link : CVE-2024-2495
JSON object : View
Products Affected
friendlyelec
- friendlywrt
CWE
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')