CVE-2024-10282 | Tenda RX9/RX9 Pro 22.03.02.10/22.03.02.20 SetVirtualServerCfg sub_42EA38 list stack-based overflow

Posted by Angelo Barbosa | Oct 23, 2024 | CVE

A vulnerability classified as critical was found in Tenda RX9 and RX9 Pro 22.03.02.10/22.03.02.20. Affected by this vulnerability is the function sub_42EA38 of the file /goform/SetVirtualServerCfg. The manipulation of the argument list leads to stack-based buffer overflow.

This vulnerability is known as CVE-2024-10282. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-10282 | Tenda RX9/RX9 Pro 22.03.02.10/22.03.02.20 SetVirtualServerCfg sub_42EA38 list stack-based overflow

Related Posts

CVE-2022-48624 | less up to 605 filename.c close_altfile Privilege Escalation

CVE-2024-28237 | OctoPrint up to 1.9.3/1.10.0rc2 URL cross site scripting (GHSA-x7mf-wrh9-r76c)

CVE-2023-52616 | Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.14/6.7.2 crypto lib/mpi mpi_ec_init initialization

CVE-2023-42800 | moonlight-stream moonlight-common-c GameStream Client buffer overflow (GHSA-4927-23jw-rq62)