CVE-2024-30593 | Tenda FH1202 1.2.0.14(408) /goform/SetOnlineDevName formSetDeviceName deviceName stack-based overflow

Inserito da Angelo Barbosa | Mar 28, 2024 | CVE

A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has been declared as critical. Affected by this vulnerability is the function formSetDeviceName of the file /goform/SetOnlineDevName. The manipulation of the argument deviceName leads to stack-based buffer overflow.

This vulnerability is known as CVE-2024-30593. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-30593 | Tenda FH1202 1.2.0.14(408) /goform/SetOnlineDevName formSetDeviceName deviceName stack-based overflow

Post correlati

CVE-2024-6270 | Community Events Plugin up to 1.5.0 on WordPress Setting cross site scripting

CVE-2024-38728 | Seraphinite Solutions Seraphinite Post DOCX Source Plugin up to 2.16.9 on WordPress server-side request forgery

CVE-2021-47109 | Linux Kernel up to 5.4.124/5.10.42/5.12.9 Neighbour resource consumption

CVE-2023-49920 | Apache Airflow up to 2.7.3 GET Request cross-site request forgery