CVE-2024-2486 | Tenda AC18 15.03.05.05 /goform/QuickIndex formQuickIndex PPPOEPassword stack-based overflow

Posted by Angelo Barbosa | Mar 15, 2024 | CVE

A vulnerability was found in Tenda AC18 15.03.05.05. It has been classified as critical. This affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow.

This vulnerability is uniquely identified as CVE-2024-2486. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-2486 | Tenda AC18 15.03.05.05 /goform/QuickIndex formQuickIndex PPPOEPassword stack-based overflow

Related Posts

CVE-2023-5806 | Mergen Quality Management System up to 1.1 sql injection

CVE-2024-42275 | Linux Kernel up to 6.10.3 drm_client_buffer_vmap_local uninitialized pointer (c0f412961653/b5fbf924f125)

CVE-2024-32559 | hwk-fr WP 404 Auto Redirect to Similar Post Plugin up to 1.0.4 on WordPress cross site scripting

CVE-2024-45136 | Adobe InCopy up to 18.5.3/19.4 unrestricted upload (apsb24-79)