Hallo zusammen,
sofern nicht selber schon gesehen/-lesen hier [0] FYI
"CVE-2024-20017 (CVSS 9.8): Zero-Click Exploit Discovered in Popular Wi-Fi Chipsets, PoC Published"
--> original Report [1]
--> "... rooted in the wappd network daemon, a critical component of the MediaTek MT7622/MT7915 SDK and RTxxxx SoftAP driver bundle. These chipsets are widely used in Wifi6 (802.11ax) devices, including popular models from Ubiquiti, Xiaomi, and Netgear. ..."
--> PoC [2]
VG
Bernd
[0] https://securityonline.info/cve-2024-20017-cvss-9-8-zero-click-exploit-disco...
[1] https://blog.coffinsec.com/0day/2024/08/30/exploiting-CVE-2024-20017-four-di...
[2] https://github.com/mellow-hype/cve-2024-20017