CVE-2024-7152 | Tenda O3 1.0.0.10(2478) /goform/setMacFilterList fromSafeSetMacFilter time stack-based overflow

Posted by Angelo Barbosa | Jul 27, 2024 | CVE

A vulnerability was found in Tenda O3 1.0.0.10(2478). It has been rated as critical. This issue affects the function fromSafeSetMacFilter of the file /goform/setMacFilterList. The manipulation of the argument time leads to stack-based buffer overflow.

The identification of this vulnerability is CVE-2024-7152. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-7152 | Tenda O3 1.0.0.10(2478) /goform/setMacFilterList fromSafeSetMacFilter time stack-based overflow

Related Posts

CVE-2024-47516 | pagure PagureRepo.log argument injection

CVE-2024-9319 | SourceCodester Online Timesheet App 1.0 delete-timesheet.php timesheet sql injection

CVE-2024-9026 | PHP up to 8.1.29/8.2.23/8.3.11 PHP-FPM SAPI null byte or nul character (GHSA-865w-9rf3-2wh5)

CVE-2023-47681 | QuadLayers WooCommerce Checkout Manager Plugin up to 7.3.0 on WordPress authorization