CVE-2024-27568 | LBT T300-T390 2.2.1.8 HTTP POST Request setupEC20Apn apn_name_3g stack-based overflow

Posted by Angelo Barbosa | Mar 1, 2024 | CVE

A vulnerability was found in LBT T300-T390 2.2.1.8 and classified as critical. Affected by this issue is the function setupEC20Apn of the component HTTP POST Request Handler. The manipulation of the argument apn_name_3g leads to stack-based buffer overflow.

This vulnerability is handled as CVE-2024-27568. The attack needs to be approached within the local network. There is no exploit available.

CVE-2024-27568 | LBT T300-T390 2.2.1.8 HTTP POST Request setupEC20Apn apn_name_3g stack-based overflow

Related Posts

CVE-2024-41696 | Priority PRI WEB Portal Add-On for ERP on Prem prior 24.0 information disclosure

CVE-2024-29018 | docker DNS Request resource transfer

CVE-2024-34919 | Pisay Online E-Learning System 1.0 File controller.php unrestricted upload

CVE-2024-31455 | Stacklok Minder 0.0.39 sql injection