CVE-2024-44565 | Tenda AX1806 1.0.0.1 form_fast_setting_internet_set serverName stack-based overflow

Inserito da Angelo Barbosa | Ago 26, 2024 | CVE

A vulnerability was found in Tenda AX1806 1.0.0.1. It has been rated as critical. Affected by this issue is the function form_fast_setting_internet_set. The manipulation of the argument serverName leads to stack-based buffer overflow.

This vulnerability is handled as CVE-2024-44565. The attack may be launched remotely. There is no exploit available.

CVE-2024-44565 | Tenda AX1806 1.0.0.1 form_fast_setting_internet_set serverName stack-based overflow

Post correlati

CVE-2024-0299 | Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setTracerouteCfg command os command injection

CVE-2024-26902 | Linux Kernel up to 6.6.22/6.7.10 RISCV null pointer dereference (3ede8e94de6b/9f599ba3b9cc/34b567868777)

CVE-2024-7339 | TVT DVR TD-2104TS-CL up to 1.3.4.24879B190222.D00.U2(8A21S) /queryDevInfo information disclosure

CVE-2023-41334 | Astropy 5.3.2 TranformGraph.to_dot_graph savelayout command injection