What is CVE-2024-23929?

CVE-2024-23929 is a high-severity vulnerability in Pioneer Dmh-wt7600nex, classified under Incorrect Authorization. CVSS score: 7.3/10. Published 2025-01-31.

How severe is CVE-2024-23929?

High severity. CVSS v3 base score is 7.3 out of 10.

Auth bypass in Pioneer Dmh-wt7600nex

CVE-2024-23929

This vulnerability allows network-adjacent attackers to create arbitrary files on affected installations of Pioneer DMH-WT7600NEX devices. Although authentication is required to exploit this vulnerability, the existing authentication mecha…

Vulnerability class: Broken Access Control

EPSS: 0.000 (10.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.3 (High). Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H.

Affected products

Pioneer Dmh-wt7600nex — versions all versions

Weakness classification (CWE)

CWE-863 — Incorrect Authorization

References

www.zerodayinitiative.com/advisories/ZDI-24-1044/
jpn.pioneer/ja/car/dl/dmh-sz700_sf700/

Frequently asked questions

What is CVE-2024-23929?: CVE-2024-23929 is a high-severity vulnerability in Pioneer Dmh-wt7600nex, classified under Incorrect Authorization. CVSS score: 7.3/10. Published 2025-01-31.
How severe is CVE-2024-23929?: High severity. CVSS v3 base score is 7.3 out of 10.