CVE-2024-4166 | Tenda 4G300 1.01.42 sub_41E858 GO/page stack-based overflow

Inserito da Angelo Barbosa | Apr 25, 2024 | CVE

A vulnerability has been found in Tenda 4G300 1.01.42 and classified as critical. Affected by this vulnerability is the function sub_41E858. The manipulation of the argument GO/page leads to stack-based buffer overflow.

This vulnerability is known as CVE-2024-4166. The attack can be launched remotely. There is no exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-4166 | Tenda 4G300 1.01.42 sub_41E858 GO/page stack-based overflow

Post correlati

CVE-2024-44914 | Irfanview 4.67.1.0 EXR File ReadEXR denial of service

CVE-2024-4813 | Ruijie RG-UAC up to 20240506 interface_commit.php name os command injection

CVE-2023-3941 | ZkTeco ZAM170-NF 1.8.25-7354-Ver1.0.0 path traversal (K-ZkTeco-2023-003)

CVE-2024-7977 | Google Chrome up to 127.0.6533.99 Installer Privilege Escalation