cvedb.io
CVE-2024-54808
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2025-03-31T21:15:48.310 · Last modified 2026-06-17T08:10:43.197

Summary

Netgear WNR854T 1.5.2 (North America) contains a stack-based buffer overflow vulnerability in the SetDefaultConnectionService function due to an unconstrained use of sscanf. The vulnerability allows for control of the program counter and can be utilized to achieve arbitrary code execution.

Affected products

netgear — wnr854t_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when netgear ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.