CVE-2024-2992 | Tenda FH1203 2.0.1.6 /goform/setcfm formSetCfm funcpara1 stack-based overflow

Inserito da Angelo Barbosa | Mar 27, 2024 | CVE

A vulnerability was found in Tenda FH1203 2.0.1.6 and classified as critical. This issue affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow.

The identification of this vulnerability is CVE-2024-2992. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-2992 | Tenda FH1203 2.0.1.6 /goform/setcfm formSetCfm funcpara1 stack-based overflow

Post correlati

CVE-2024-32229 | FFmpeg 7.0 vf_tiltandshift.c copy_column heap-based overflow

CVE-2024-3620 | SourceCodester Kortex Lite Advocate Office Management System 1.0 /control/adds.php name/gender/dob/email/mobile/address sql injection

CVE-2024-1308 | WooCommerce Cloak Affiliate Links Plugin up to 1.0.33 on WordPress Permalink Modification authorization

CVE-2023-51447 | Decidim prior 0.27.5/0.28.0 Upload Request cross site scripting (GHSA-9w99-78rj-hmxq)