CVE-2024-32631

HIGH EPSS 25.2%

Published Apr 16, 20242y ago · Modified Jun 17, 20261w ago

8.0 CVSS 3.1

High

Published Apr 16, 2024 2y ago

Last Modified Jun 17, 2026 1w ago

Description

Out-of-Bounds read in ciCCIOTOPT in ASR180X will cause incorrect computations.

Base Score

8.0

Exploitability

1.3

Impact

6.0

Vector string

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Attack Vector Network

Attack Complexity High

Privileges Required High

User Interaction None

Scope Changed

Confidentiality High

Integrity High

Availability High

EPSS Exploit Probability

25.2% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

CWE-125 Out-of-bounds Read Memory Safety

Vendor	Product	Version	Range
asrmicro	asr3602_firmware	*	<cp01.057.067
asrmicro	asr3602	*	any
asrmicro	asr3605_firmware	*	<cp01.057.067
asrmicro	asr3605	*	any
asrmicro	asr3607_firmware	*	<cp01.057.067
asrmicro	asr3607	*	any
asrmicro	asr1609_firmware	*	<cp01.057.067
asrmicro	asr1609	*	any
asrmicro	asr1605_firmware	*	<cp01.057.067
asrmicro	asr1605	*	any
asrmicro	asr1602_firmware	*	<cp01.057.067
asrmicro	asr1602	*	any
asrmicro	asr1603_firmware	*	<cp01.057.067
asrmicro	asr1603	*	any
asrmicro	asr1606_firmware	*	<cp01.057.067
asrmicro	asr1606	*	any
asrmicro	asr1803_firmware	*	<cp01.057.067
asrmicro	asr1803	*	any
asrmicro	asr1806_firmware	*	<cp01.057.067
asrmicro	asr1806	*	any
asrmicro	asr1803sc_firmware	*	<cp01.057.067
asrmicro	asr1803sc	*	any
asrmicro	asr1607_firmware	*	<cp01.057.067
asrmicro	asr1607	*	any
asrmicro	asr3603_firmware	*	<cp01.057.067
asrmicro	asr3603	*	any

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.