CVE-2024-6963 | Tenda O3 1.0.0.10 formexeCommand cmdinput stack-based overflow

Inserito da Angelo Barbosa | Lug 21, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Tenda O3 1.0.0.10. This issue affects the function formexeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow.

The identification of this vulnerability is CVE-2024-6963. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-6963 | Tenda O3 1.0.0.10 formexeCommand cmdinput stack-based overflow

Post correlati

CVE-2024-36745 | Oneflow 0.9.1 oneflow.index_select denial of service

CVE-2023-50430 | Goodix Fingerprint Device SDCP improper authentication

CVE-2024-4046 | Huawei HarmonyOS/EMUI OS Security Module logic error

CVE-2024-33696 | Broadstreet Xpress Ad Widget Plugin up to 2.20.0 on WordPress cross site scripting