CVE-2024-7333 | TOTOLINK N350RT 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setParentalRules week/sTime/eTime buffer overflow

Inserito da Angelo Barbosa | Lug 31, 2024 | CVE

A vulnerability was found in TOTOLINK N350RT 9.3.5u.6139_B20201216. It has been declared as critical. This vulnerability affects the function setParentalRules of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument week/sTime/eTime leads to buffer overflow.

This vulnerability was named CVE-2024-7333. The attack can be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-7333 | TOTOLINK N350RT 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setParentalRules week/sTime/eTime buffer overflow

Post correlati

CVE-2024-3745 | MSI Afterburner 4.6.6.16381 Beta 3 RTCore64.sys authorization

CVE-2023-49816 | Innovative Solutions Fix My Feed RSS Repair Plugin up to 1.4 on WordPress cross-site request forgery

CVE-2024-36241 | Mattermost up to 8.1.12/9.5.3/9.6.1 Playbook Add Slash Command access control

CVE-2024-25350 | PHPGurukul Zoo Management System 1.0 edit-ticket.php tickettype/tprice sql injection