CVE-2024-2811 | Tenda AC15 15.03.20_multi /goform/WifiWpsStart formWifiWpsStart index stack-based overflow

Inserito da Angelo Barbosa | Mar 21, 2024 | CVE

A vulnerability was found in Tenda AC15 15.03.20_multi and classified as critical. Affected by this issue is the function formWifiWpsStart of the file /goform/WifiWpsStart. The manipulation of the argument index leads to stack-based buffer overflow.

This vulnerability is handled as CVE-2024-2811. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-2811 | Tenda AC15 15.03.20_multi /goform/WifiWpsStart formWifiWpsStart index stack-based overflow

Post correlati

CVE-2024-0484 | code-projects Fighting Cock Information System 1.0 update_mother.php age_mother sql injection

CVE-2024-31005 | Axiomatic Bento4 1.6.0-641 Ap4MdhdAtom.cpp AP4_MdhdAtom Privilege Escalation (Issue 941)

CVE-2023-49745 | Spiffy Calendar Plugin up to 4.9.5 on WordPress cross site scripting

CVE-2024-45460 | Manu225 Flipping Cards Plugin up to 1.30 on WordPress cross site scripting