CVE-2024-4166 | Tenda 4G300 1.01.42 sub_41E858 GO/page stack-based overflow

Inserito da Angelo Barbosa | Apr 25, 2024 | CVE

A vulnerability has been found in Tenda 4G300 1.01.42 and classified as critical. Affected by this vulnerability is the function sub_41E858. The manipulation of the argument GO/page leads to stack-based buffer overflow.

This vulnerability is known as CVE-2024-4166. The attack can be launched remotely. There is no exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-4166 | Tenda 4G300 1.01.42 sub_41E858 GO/page stack-based overflow

Post correlati

CVE-2024-28393 | scalapay up to 1.2.41 on PrestaShop postProcess sql injection

CVE-2024-6427 | MESbook 20221021.03 message cross site scripting

CVE-2023-49242 | Huawei HarmonyOS/EMUI Broadcast access control

CVE-2024-35143 | IBM Planning Analytics Local 2.0/2.1 missing authentication (XFDB-292420)