CVE-2024-7441 | Vivotek SD9364 VVTK-0103f httpd read Content-Length stack-based overflow

A vulnerability was found in Vivotek SD9364 VVTK-0103f. It has been declared as critical. This vulnerability affects the function read of the component httpd. The manipulation of the argument Content-Length leads to stack-based buffer overflow. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability was named CVE-2024-7441. The attack can be initiated remotely. Furthermore, there is an exploit available.

Vendor was contacted early and confirmed that the affected release tree is end-of-life.

It is recommended to apply restrictive firewalling.

CVE-2024-7441 | Vivotek SD9364 VVTK-0103f httpd read Content-Length stack-based overflow

Related Posts

CVE-2023-38002 | IBM Storage Scale up to 5.1.9.2 session fixiation (XFDB-260208)

CVE-2024-27627 | SuperCali 1.1.0 bad_password.php email cross site scripting (ID 177254)

CVE-2024-25974 | Frentix OpenOlat LMS up to 18.1.5 SVG Image cross site scripting

CVE-2024-5418 | DethemeKit for Elementor Plugin up to 2.1.4 on WordPress Attribute slitems cross site scripting