CVE-2024-12352 | TOTOLINK EX1800T 9.1.0cu.2112_B20220316 /cgi-bin/cstecgi.cgi sub_40662C ssid stack-based overflow

Posted by Angelo Barbosa | Dec 8, 2024 | CVE

A vulnerability classified as problematic was found in TOTOLINK EX1800T 9.1.0cu.2112_B20220316. This vulnerability affects the function sub_40662C of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ssid leads to stack-based buffer overflow.

This vulnerability was named CVE-2024-12352. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-12352 | TOTOLINK EX1800T 9.1.0cu.2112_B20220316 /cgi-bin/cstecgi.cgi sub_40662C ssid stack-based overflow

Related Posts

CVE-2024-37885 | Nextcloud Desktop Client up to 3.11.x on macOS DYLD_INSERT_LIBRARIES code injection (GHSA-4mf7-v63m-99p7)

CVE-2024-26680 | Linux Kernel up to 6.1.77/6.6.16/6.7.4 atlantic kernel/dma/debug.c aq_ring_hwts_rx_alloc use after free

CVE-2023-52855 | Linux Kernel up to 6.6.1 _dwc2_hcd_urb_enqueue null pointer dereference

VDB-267525 | Trojan.Win32.DarkGateLoader urlmon.dll uncontrolled search path