CVE-2024-7439 | Vivotek CC8160 VVTK-0100d httpd read Content-Length stack-based overflow

A vulnerability was found in Vivotek CC8160 VVTK-0100d and classified as critical. Affected by this issue is the function read of the component httpd. The manipulation of the argument Content-Length leads to stack-based buffer overflow. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is handled as CVE-2024-7439. The attack may be launched remotely. Furthermore, there is an exploit available.

Vendor was contacted early and confirmed that the affected release tree is end-of-life.

It is recommended to apply restrictive firewalling.

CVE-2024-7439 | Vivotek CC8160 VVTK-0100d httpd read Content-Length stack-based overflow

Post correlati

CVE-2023-50730 | graphql/grackle GraphQL Query stack-based overflow

CVE-2024-8758 | Quiz and Survey Master Plugin up to 9.1.2 on WordPress Setting cross site scripting

CVE-2024-37514 | ArtistScope CopySafe Web Protection Plugin up to 3.14 on WordPress cross site scripting

CVE-2023-52614 | Linux Kernel up to 5.15.148/6.1.75/6.6.14/6.7.2 devfreq trans_stat_show buffer overflow