CVE-2024-10282 | Tenda RX9/RX9 Pro 22.03.02.10/22.03.02.20 SetVirtualServerCfg sub_42EA38 list stack-based overflow

Posted by Angelo Barbosa | Oct 23, 2024 | CVE

A vulnerability classified as critical was found in Tenda RX9 and RX9 Pro 22.03.02.10/22.03.02.20. Affected by this vulnerability is the function sub_42EA38 of the file /goform/SetVirtualServerCfg. The manipulation of the argument list leads to stack-based buffer overflow.

This vulnerability is known as CVE-2024-10282. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-10282 | Tenda RX9/RX9 Pro 22.03.02.10/22.03.02.20 SetVirtualServerCfg sub_42EA38 list stack-based overflow

Related Posts

CVE-2020-36836 | emrevona WP Fastest Cache Plugin up to 0.9.0.2 on WordPress Path Validation cross-site request forgery (ID 2235160)

HPE ArubaOS CLI Service buffer overflow (ARUBA-PSA-2023-017)

CVE-2024-1003 | Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setLanguageCfg lang stack-based overflow

CVE-2023-49394 | Zentao up to 4.1.3 redirect