CVE-2024-24051

EUVD-2024-21476
Improper input validation of printing files in Monoprice Select Mini V2 V37.115.32 allows attackers to instruct the device's movable parts to destinations that exceed the devices' maximum coordinates via the printing of a malicious .gcode file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
CISA-ADPADP
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 13%
Affected Products (NVD)
VendorProductVersion
monopriceselect_mini_3d_printer_v2_firmware
37.115.32
𝑥
= Vulnerable software versions
References
https://github.com/tkruppert/Reported_Vulnerabilities/blob/main/CVE-2024-24051.md
https://github.com/tkruppert/Reported_Vulnerabilities/blob/main/CVE-2024-24051.md