CVE-2024-27570 | LBT T300-T390 2.2.1.8 HTTP POST Request generate_conf_router ApCliSsid stack-based overflow

Inserito da Angelo Barbosa | Mar 1, 2024 | CVE

A vulnerability was found in LBT T300-T390 2.2.1.8. It has been declared as critical. This vulnerability affects the function generate_conf_router of the component HTTP POST Request Handler. The manipulation of the argument ApCliSsid leads to stack-based buffer overflow.

This vulnerability was named CVE-2024-27570. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-27570 | LBT T300-T390 2.2.1.8 HTTP POST Request generate_conf_router ApCliSsid stack-based overflow

Post correlati

CVE-2023-47558 | Mahlamusa Who Hit The Page Plugin up to 1.4.14.3 on WordPress sql injection

CVE-2023-52211 | Automattic WP Job Manager Plugin up to 2.0.0 on WordPress authorization

CVE-2024-21908 | TinyMCE up to 5.8.x Editor cross site scripting

CVE-2023-26009 | Favethemes Houzez Login Register Plugin up to 2.6.3 on WordPress privileges management