CVE-2024-35399 | Totolink CP900L 4.1.5cu.798_B20221228 loginAuth password stack-based overflow

Inserito da Angelo Barbosa | Mag 28, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Totolink CP900L 4.1.5cu.798_B20221228. Affected by this issue is the function loginAuth. The manipulation of the argument password leads to stack-based buffer overflow.

This vulnerability is handled as CVE-2024-35399. The attack may be launched remotely. There is no exploit available.

CVE-2024-35399 | Totolink CP900L 4.1.5cu.798_B20221228 loginAuth password stack-based overflow

Post correlati

CVE-2024-32454 | Wappointment Appointment Bookings for Zoom GoogleMeet and more Plugin server-side request forgery

CVE-2024-34343 | Nuxt up to 3.12.3 URL Parser navigateTo cross site scripting (GHSA-vf6r-87q4-2vjf)

CVE-2023-32337 | IBM Maximo Spatial Asset Management 8.10 server-side request forgery (XFDB-255288)

CVE-2024-3082 | Plug&Track Sensor Net Connect V2 2.24 credentials storage