CVE-2024-3881 | Tenda W30E 1.0.1.25(633) /goform/frmL7ProtForm frmL7PlotForm page stack-based overflow

Posted by Angelo Barbosa | Apr 16, 2024 | CVE

A vulnerability was found in Tenda W30E 1.0.1.25(633) and classified as critical. This issue affects the function frmL7PlotForm of the file /goform/frmL7ProtForm. The manipulation of the argument page leads to stack-based buffer overflow.

The identification of this vulnerability is CVE-2024-3881. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-3881 | Tenda W30E 1.0.1.25(633) /goform/frmL7ProtForm frmL7PlotForm page stack-based overflow

Related Posts

CVE-2024-3258 | SourceCodester Internship Portal Management System 1.0 admin/add_activity.php title/description/start/end sql injection

CVE-2024-8949 | SourceCodester Online Eyewear Shop 1.0 Cart Content /classes/Master.php cart_id/id improper ownership management

CVE-2024-9973 | SourceCodester Online Eyewear Shop 1.0 Report Viewing Page /admin/?page=reports date sql injection

CVE-2024-7454 | SourceCodester Clinics Patient Management System 1.0 patients.php patient_name sql injection