CVE-2024-51141

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: TOTOLINK Bluetooth Wireless Adapter A600UB (affected versions not specified)

Description: The issue allows a local attacker to execute arbitrary code via the WifiAutoInstallDriver.exe and MSASN1.dll components. This is related to incorrect integrity value checking in the MSASN1.dll library of the WifiAutoInstallDriver.exe file in the TOTOLINK A600UB wireless USB adapter's firmware. Exploitation of this issue may enable an attacker to execute arbitrary code.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-354

Related Identifiers

BDU:2024-10494

CVE-2024-51141

Affected Products

Msasn1.Dll

Totolink A600Ub

Wifiautoinstalldriver.Exe

CVE-2024-51141

Weakness Enumeration

Related Identifiers

Affected Products

References · 7