Security Advisory

CVE-2024-56316

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-27 00:00:00

Last updated 2025-01-28 19:38:27

Assigner mitre

State PUBLISHED

Description

In AXESS ACS (Auto Configuration Server) through 5.2.0, unsanitized user input in the TR069 API allows remote unauthenticated attackers to cause a permanent Denial of Service via crafted TR069 requests on TCP port 9675 or 7547. Rebooting does not resolve the permanent Denial of Service.

← Browse all CVEs View on cve.org ↗