CVE-2024-3012 | Tenda FH1205 2.0.0.7(775) GetParentControlInfo mac stack-based overflow

Posted by Angelo Barbosa | Mar 27, 2024 | CVE

A vulnerability was found in Tenda FH1205 2.0.0.7(775). It has been declared as critical. This vulnerability affects the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument mac leads to stack-based buffer overflow.

This vulnerability was named CVE-2024-3012. The attack can be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-3012 | Tenda FH1205 2.0.0.7(775) GetParentControlInfo mac stack-based overflow

Related Posts

CVE-2024-29472 | OneBlog 2.3.4 Privilege Management cross site scripting

CVE-2024-4839 | parisneo lollms-webui up to 9.6 XTTS Service cross-site request forgery

CVE-2023-47784 | ThemePunch OHG Slider Revolution Plugin up to 6.6.15 on WordPress unrestricted upload

CVE-2024-44233 | Apple tvOS Video File memory corruption