CVE-2024-10351 | Tenda RX9 Pro 22.03.02.20 POST Request /goform/setMacFilterCfg sub_424CE0 deviceList stack-based overflow

Posted by Angelo Barbosa | Oct 24, 2024 | CVE

A vulnerability was found in Tenda RX9 Pro 22.03.02.20. It has been rated as critical. This issue affects the function sub_424CE0 of the file /goform/setMacFilterCfg of the component POST Request Handler. The manipulation of the argument deviceList leads to stack-based buffer overflow.

The identification of this vulnerability is CVE-2024-10351. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-10351 | Tenda RX9 Pro 22.03.02.20 POST Request /goform/setMacFilterCfg sub_424CE0 deviceList stack-based overflow

Related Posts

CVE-2024-37098 | Blossom Themes BlossomThemes Email Newsletter Plugin up to 2.2.6 on WordPress server-side request forgery

CVE-2024-5475 | Responsive Video Embed Plugin up to 0.5.0 on WordPress Shortcode cross site scripting

CVE-2024-1861 | Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan Plugin Table Truncation authorization

CVE-2021-46927 | Linux Kernel up to 5.15.12 pagemap get_user_pages_unlocked assertion (90d2beed5e75/3a0152b21952)