CVE-2024-12343 | TP-Link VN020 F3v(T) TT_V6.2.1021 SOAP Request /control/WANIPConnection NewConnectionType buffer overflow

Posted by Angelo Barbosa | Dec 7, 2024 | CVE

A vulnerability classified as critical has been found in TP-Link VN020 F3v(T) TT_V6.2.1021. Affected is an unknown function of the file /control/WANIPConnection of the component SOAP Request Handler. The manipulation of the argument NewConnectionType leads to buffer overflow.

This vulnerability is traded as CVE-2024-12343. The attack needs to be done within the local network. Furthermore, there is an exploit available.

It is recommended to apply restrictive firewalling.

CVE-2024-12343 | TP-Link VN020 F3v(T) TT_V6.2.1021 SOAP Request /control/WANIPConnection NewConnectionType buffer overflow

Related Posts

CVE-2024-49991 | Linux Kernel up to 6.6.54/6.10.13/6.11.2 amdkfd_free_gtt_mem use after free

CVE-2024-52061 | RTI Connext Professional up to 5.3.1.44/6.0.1.39/6.1.2.20/7.3.0.4 Core Libraries buffer overflow

CVE-2024-35386 | Cesanta mjs 2.20.0 mjs.c mjs_do_gc denial of service

CVE-2023-42495 | Dasan Networks W-Web up to 1.27 os command injection