CVE-2024-36604 | Tenda O3V2 1.0.0.12(3880) SetStp stpEn command injection

Inserito da Angelo Barbosa | Giu 4, 2024 | CVE

A vulnerability classified as critical was found in Tenda O3V2 1.0.0.12(3880). This vulnerability affects the function SetStp. The manipulation of the argument stpEn leads to command injection.

This vulnerability was named CVE-2024-36604. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-36604 | Tenda O3V2 1.0.0.12(3880) SetStp stpEn command injection

Post correlati

CVE-2022-48640 | Linux Kernel up to 5.15.70/5.19.11/6.0 Virtual Address bond_rr_gen_slave_id null pointer dereference (ec3a6f4ffe55/2c8e8ab53acf/0e400d602f46)

CVE-2024-8003 | Go-Tribe gotribe-admin 1.0 Log routes.go InitRoutes deserialization

CVE-2024-42677 | Huizhi Enterprise Resource Management System up to 1.0 /nssys/common/filehandle information disclosure

CVE-2024-22774 | Panoramic Digital Imaging Software 9.1.2.7600 ccsservice.exe Local Privilege Escalation