216.73.217.176

CVE-2024-29155

· Published 16/10/2024 16:15 · Modified 16/10/2024 16:38

Labels: CVE-2024-29155 2024-10-16CVE-2024-29155CWE-20dc3f6da9-85b5-4a73-84a2-2ec90b40fca5

Essential information

Published
16/10/2024 16:15
Modified
16/10/2024 16:38
Author
Creator
CVSS
4.3 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CVSS metrics

Description

On Microchip RN4870 devices, when more than one consecutive PairReqNoInputNoOutput request is received, the device becomes incapable of completing the pairing process. A third party can inject a second PairReqNoInputNoOutput request just after a real one, causing the pair request to be blocked.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
dc3f6da9-85b5-4a73-84a2-2ec90b40fca5
NVD
View on NVD

References