CVE-2024-8408 | Linksys WRT54G 4.21.5 POST Parameter /apply.cgi validate_services_port services_array stack-based overflow

A vulnerability was found in Linksys WRT54G 4.21.5. It has been rated as critical. Affected by this issue is the function validate_services_port of the file /apply.cgi of the component POST Parameter Handler. The manipulation of the argument services_array leads to stack-based buffer overflow.

This vulnerability is handled as CVE-2024-8408. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-8408 | Linksys WRT54G 4.21.5 POST Parameter /apply.cgi validate_services_port services_array stack-based overflow

Post correlati

CVE-2024-6479 | SIP Reviews Shortcode for WooCommerce Plugin up to 1.2.3 on WordPress sql injection

CVE-2024-9281 | bg5sbk MiniCMS up to 1.11 post-edit.php cross-site request forgery

CVE-2023-52717 | Huawei HarmonyOS/EMUI Lock Screen Module permission

CVE-2024-29168 | Dell Secure Connect Gateway-Application prior 5.22.00.00 Internal Assets REST API sql injection (dsa-2024-181)