What is CVE-2024-51500?

CVE-2024-51500 is a medium-severity vulnerability in Meshtastic Firmware, classified under CWE-138. CVSS score: 5.3/10. Published 2024-11-04.

How severe is CVE-2024-51500?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Vulnerability in Meshtastic Firmware

CVE-2024-51500

Meshtastic firmware is a device firmware for the Meshtastic project. The Meshtastic firmware does not check for packets claiming to be from the special broadcast address (0xFFFFFFFF) which could result in unexpected behavior and potential…

EPSS: 0.001 (25.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L.

Affected products

Meshtastic Firmware — versions < 2.5.6

Weakness classification (CWE)

CWE-138
CWE-159

References

https://github.com/meshtastic/firmware/security/advisories/GHSA-xfmq-5j3j-vgv8 (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2024-51500?: CVE-2024-51500 is a medium-severity vulnerability in Meshtastic Firmware, classified under CWE-138. CVSS score: 5.3/10. Published 2024-11-04.
How severe is CVE-2024-51500?: Medium severity. CVSS v3 base score is 5.3 out of 10.