CVE-2024-33180 | Tenda AC18 15.03.3.10 saveParentControlInfo deviceId stack-based overflow

Posted by Angelo Barbosa | Jul 16, 2024 | CVE

A vulnerability was found in Tenda AC18 15.03.3.10. It has been classified as critical. Affected is an unknown function of the file ip/goform/saveParentControlInfo. The manipulation of the argument deviceId leads to stack-based buffer overflow.

This vulnerability is traded as CVE-2024-33180. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-33180 | Tenda AC18 15.03.3.10 saveParentControlInfo deviceId stack-based overflow

Related Posts

CVE-2024-52299 | xwikisas macro-pdfviewer up to 2.5.5 generation of predictable numbers or identifiers (GHSA-522m-m242-jr9p)

CVE-2024-37293 | awslabs aws-deployment-framework up to 3.x privileges assignment (GHSA-mcj7-ppmv-h6jr)

CVE-2024-36176 | Adobe Experience Manager up to 6.5.20 cross site scripting (apsb24-28)

CVE-2024-38574 | Linux Kernel up to 6.8.11/6.9.2 libbpf bpf_objec_load_prog null pointer dereference (ef80b59acfa4/1fd91360a758/9bf48fa19a4b)