CVE-2024-52033

Summary

Exposure of sensitive system information to an unauthorized control sphere issue exists in Rakuten Turbo 5G firmware version V1.3.18 and earlier. If this vulnerability is exploited, a remote unauthenticated attacker may obtain information of the other devices connected through the Wi-Fi.

Affected Software

VendorProductVersion RangeStatus
Rakuten Mobile, Inc.Rakuten Turbo 5GV1.3.18 and earlieraffected

Weaknesses

  • CWE-497: Exposure of sensitive system information to an unauthorized control sphere

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References