CVE-2024-6963 | Tenda O3 1.0.0.10 formexeCommand cmdinput stack-based overflow

Inserito da Angelo Barbosa | Lug 21, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Tenda O3 1.0.0.10. This issue affects the function formexeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow.

The identification of this vulnerability is CVE-2024-6963. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-6963 | Tenda O3 1.0.0.10 formexeCommand cmdinput stack-based overflow

Post correlati

CVE-2023-45740 | WESEEK GROWI up to 4.1.2 Profile Image cross site scripting

CVE-2023-5081 | Lenovo Tab M8 HD Device Identifier information disclosure

CVE-2023-47784 | ThemePunch OHG Slider Revolution Plugin up to 6.6.15 on WordPress unrestricted upload

CVE-2024-4390 | diez Depicter Plugin up to 3.0.2 on WordPress Nonce Privilege Escalation