Lucene search

MitreCVE-2024-24051

HistoryJun 12, 2024 - 6:15 p.m.

CVE-2024-24051

2024-06-1218:15:10

mitre

web.nvd.nist.gov

improper input validation

monoprice select mini v2 v37.115.32

printing files

malicious .gcode file

maximum coordinates

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

AI Score

6.8

Confidence

High

EPSS

Percentile

16.4%

JSON

Improper input validation of printing files in Monoprice Select Mini V2 V37.115.32 allows attackers to instruct the device’s movable parts to destinations that exceed the devices’ maximum coordinates via the printing of a malicious .gcode file.

Affected configurations

Nvd

Node

monopriceselect_min_v2_firmwareMatch37.115.32

AND

monopriceselect_min_v2

VendorProductVersionCPE
monopriceselect_min_v2_firmware37.115.32cpe:2.3:o:monoprice:select_min_v2_firmware:37.115.32:*:*:*:*:*:*:*
monopriceselect_min_v2*cpe:2.3:h:monoprice:select_min_v2:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
monoprice	select_min_v2_firmware	37.115.32	cpe:2.3:o:monoprice:select_min_v2_firmware:37.115.32:::::::*
monoprice	select_min_v2	*	cpe:2.3:h:monoprice:select_min_v2::::::::

References

github.com/tkruppert/Reported_Vulnerabilities/blob/main/CVE-2024-24051.md

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

AI Score

6.8

Confidence

High

EPSS

Percentile

16.4%

JSON

Related for CVE-2024-24051