CVE-2024-36604 | Tenda O3V2 1.0.0.12(3880) SetStp stpEn command injection

Inserito da Angelo Barbosa | Giu 4, 2024 | CVE

A vulnerability classified as critical was found in Tenda O3V2 1.0.0.12(3880). This vulnerability affects the function SetStp. The manipulation of the argument stpEn leads to command injection.

This vulnerability was named CVE-2024-36604. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-36604 | Tenda O3V2 1.0.0.12(3880) SetStp stpEn command injection

Post correlati

CVE-2024-42293 | Linux Kernel up to 6.10.2 arm64 p4d_offset_lockless allocation of resources (78672d49d3ee/36639013b346)

CVE-2023-5636 | ArslanSoft Education Portal up to 1.0 unrestricted upload

CVE-2024-1450 | Shariff Wrapper Plugin up to 4.6.10 on WordPress cross site scripting

CVE-2024-49313 | RudeStan VKontakte Wall Post Plugin up to 2.0 on WordPress cross-site request forgery