CVE-2024-2546 | Tenda A18 15.13.07.09 fromSetWirelessRepeat wpapsk_crypto5g stack-based overflow

Posted by Angelo Barbosa | Mar 15, 2024 | CVE

A vulnerability has been found in Tenda A18 15.13.07.09 and classified as critical. Affected by this vulnerability is the function fromSetWirelessRepeat. The manipulation of the argument wpapsk_crypto5g leads to stack-based buffer overflow.

This vulnerability is known as CVE-2024-2546. The attack can be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-2546 | Tenda A18 15.13.07.09 fromSetWirelessRepeat wpapsk_crypto5g stack-based overflow

Related Posts

CVE-2024-26648 | Linux Kernel up to 6.6.14/6.7.2 display edp_setup_replay null pointer dereference (22ae604aea14/c02d257c6541/7073934f5d73)

CVE-2024-38809 | Vmware Spring Framework up to 5.3.37/6.0.22/6.1.11 Conditional HTTP Request ETags denial of service

CVE-2024-10278 | ESAFENET CDG 5 ReUserOrganiseService.java userId sql injection

CVE-2024-4554 | OpenText NetIQ Access Manager up to 5.0.4.0 cross site scripting