Contemporary Control System BASrouter BACnet BASRT-B 2.7.2 Application Protocol Data Unit denial of service

Overview

A vulnerability classified as critical was found in Contemporary Control System BASrouter BACnet BASRT-B 2.7.2. This vulnerability affects unknown code of the component Application Protocol Data Unit. The manipulation leads to denial of service. Using CWE to declare the problem leads to CWE-404. The weakness was published 05/11/2024. The advisory is available at github.com. This vulnerability was named CVE-2024-4791. The attack can be initiated remotely. There are no technical details available. Furthermore, there is an exploit available. The exploit has been disclosed to the public and may be used. The structure of the vulnerability defines a possible price range of USD $0-$5k at the moment. This vulnerability is assigned to T1499 by the MITRE ATT&CK project. It is declared as Proof-of-Concept. It is possible to download the exploit at github.com. As 0-day the estimated underground price was around $0-$5k. It is recommended to apply restrictive firewalling. The vendor was contacted early about this disclosure but did not respond in any way. [Details]

IOB - Indicator of Behavior (260)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Language

en168
ja12
zh12
fr10
de10

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

IOC - Indicator of Compromise (7)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP rangeActorTypeConfidence
13.123.24.0/24MeterpreterpredictiveHigh
2XX.XXX.X.X/XXXxxxxx XxxxxxpredictiveHigh
3XX.XX.XXX.X/XXXxxxxx XxxxxxxpredictiveHigh
4XX.XX.XXX.X/XXXxxxxxxxpredictiveHigh
5XXX.XX.XX.X/XXXxxxxx XxxxxxpredictiveHigh
6XXX.XX.XX.X/XXXxxxxpredictiveHigh
7XXX.XXX.XXX.X/XXXxxxxx Xxxxxx Xx XxxxxxxpredictiveHigh

Do you want to use VulDB in your project?

Use the official API to access entries easily!