CVE-2024-46049 | Tenda O6 1.0.0.7(2054) /goform/exeCommand formexeCommand cmdinput stack-based overflow

Posted by Angelo Barbosa | Sep 13, 2024 | CVE

A vulnerability has been found in Tenda O6 1.0.0.7(2054) and classified as critical. This vulnerability affects the function formexeCommand of the file /goform/exeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow.

This vulnerability was named CVE-2024-46049. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-46049 | Tenda O6 1.0.0.7(2054) /goform/exeCommand formexeCommand cmdinput stack-based overflow

Related Posts

CVE-2024-30965 | DedeCMS 5.7 member_scores.php cross-site request forgery

CVE-2024-0207 | Wireshark 4.2.0 HTTP3 Dissector out-of-bounds

CVE-2024-34203 | Totolink CP450 4.1.0cu.747_B20191224 setLanguageCfg stack-based overflow

CVE-2024-32967 | Zitadel up to 2.50.2 information disclosure