CVE-2024-5244
Expert Analysis
Professional remediation guidance
Get tailored security recommendations from our analyst team for CVE-2024-5244. We'll provide specific mitigation strategies based on your environment and risk profile.
CVSS Score
V3.0EPSS Score
v2025.03.14There is a 0.1% chance that this vulnerability will be exploited in the wild within the next 30 days.
Attack Vector Metrics
Impact Metrics
Description
TP-Link Omada ER605 Reliance on Security Through Obscurity Vulnerability. This vulnerability allows network-adjacent attackers to access or spoof DDNS messages on affected installations of TP-Link Omada ER605 routers. Authentication is not required to exploit this vulnerability. However, devices are vulnerable only if configured to use the Comexe DDNS service.
The specific flaw exists within the cmxddnsd executable. The issue results from reliance on obscurity to secure network data. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of root. Was ZDI-CAN-22439.
Available Exploits
Related News
Affected Products
Affected Versions:
Affected Versions:
Social Media Intelligence
Real-time discussions and threat intelligence from social platforms
Strange Network Behavior Reaching out for guidance on a challenging situation with a brand new managed client. Before I dive in, I want to acknowledge I'm not a network expert, so please let me know if I've missed anything crucial. The client had a concerning setup: a 5 year old …