CVE-2024-27572 | LBT T300-T390 2.2.1.8 HTTP POST Request updateCurAPlist ApCliSsid stack-based overflow

Posted by Angelo Barbosa | Mar 1, 2024 | CVE

A vulnerability was found in LBT T300-T390 2.2.1.8. It has been rated as critical. This issue affects the function updateCurAPlist of the component HTTP POST Request Handler. The manipulation of the argument ApCliSsid leads to stack-based buffer overflow.

The identification of this vulnerability is CVE-2024-27572. The attack needs to be done within the local network. There is no exploit available.

CVE-2024-27572 | LBT T300-T390 2.2.1.8 HTTP POST Request updateCurAPlist ApCliSsid stack-based overflow

Related Posts

CVE-2024-3314 | SourceCodester Computer Laboratory Management System 1.0 /classes/Users.php sql injection

CVE-2024-24725 | Gibbon up to 26.0.00 POST Request import_run.php&type=externalAssessment&step=4 columnOrder deserialization (Exploit 51903 / EDB-51903)

CVE-2024-28828 | Checkmk up to 2.0.0p39/2.1.0p44/2.2.0p28/2.3.0p7 cross-site request forgery

CVE-2024-0890 | hongmaple octopus 1.0 /system/dept/edit ancestors sql injection