CVE-2024-2993 | Tenda FH1203 2.0.1.6 /goform/QuickIndex formQuickIndex PPPOEPassword stack-based overflow

Posted by Angelo Barbosa | Mar 27, 2024 | CVE

A vulnerability was found in Tenda FH1203 2.0.1.6. It has been classified as critical. Affected is the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow.

This vulnerability is traded as CVE-2024-2993. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-2993 | Tenda FH1203 2.0.1.6 /goform/QuickIndex formQuickIndex PPPOEPassword stack-based overflow

Related Posts

Zoom Rooms Privilege Management privileges management

CVE-2024-27769 | Unitronics Unistream Unilogic prior 1.35.227 information disclosure

CVE-2023-47579 | Relyum RELY-PCIe 22.2.1 System Group Misconfiguration unknown vulnerability

CVE-2024-4647 | Campcodes Complete Web-Based School Management System 1.0 student_first_payment.php index cross site scripting