cbcvebase.
CVE-2024-8454
published 2024-09-30

CVE-2024-8454: The swctrl service is used to detect and remotely manage PLANET Technology devices. Certain switch models have a Denial-of-Service vulnerability in the swctrl…

PriorityP342high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
0.59%
43.7th percentile
The swctrl service is used to detect and remotely manage PLANET Technology devices. Certain switch models have a Denial-of-Service vulnerability in the swctrl service, allowing unauthenticated remote attackers to send crafted packets that can crash the service.

Affected

5 ranges
VendorProductVersion rangeFixed in
planetgs-4210-24p2s_firmware< 3.305b2408023.305b240802
planetgs-4210-24pl4c_firmware< 2.305b2407192.305b240719
planet_technologygs-4210-24p2s_hardware_3.0< 3.305b2408023.305b240802
planet_technologygs-4210-24pl4c_hardware_2.0< 2.305b2407192.305b240719
planet_technologyigs-5225-4up1t2s_hardware_1.0
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.