CVE-2024-28550 | Tenda AC18 15.03.05.05 formExpandDlnaFile filePath stack-based overflow

Inserito da Angelo Barbosa | Mar 18, 2024 | CVE

A vulnerability was found in Tenda AC18 15.03.05.05. It has been declared as critical. This vulnerability affects the function formExpandDlnaFile. The manipulation of the argument filePath leads to stack-based buffer overflow.

This vulnerability was named CVE-2024-28550. The attack can only be done within the local network. Furthermore, there is an exploit available.

CVE-2024-28550 | Tenda AC18 15.03.05.05 formExpandDlnaFile filePath stack-based overflow

Post correlati

CVE-2025-4220 | Xavins List Subpages Plugin up to 1.3 on WordPress Shortcode xls cross site scripting

CVE-2025-34073 | Stamparm Maltrail up to 0.54 core/http.py subprocess.check_output Username os command injection

CVE-2024-25937 | Delta Electronics DIAEnergie up to 1.10.00.4 DIAE_tagHandler.ashx sql injection (icsa-24-074-12)

CVE-2024-10521 | Cimatti Contact Forms Plugin up to 1.9.2 on WordPress process_bulk_action cross-site request forgery