CVE-2024-6189 | Tenda A301 15.13.08.12 /goform/WifiExtraSet fromSetWirelessRepeat wpapsk_crypto stack-based overflow

Posted by Angelo Barbosa | Jun 20, 2024 | CVE

A vulnerability was found in Tenda A301 15.13.08.12. It has been classified as critical. Affected is the function fromSetWirelessRepeat of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto leads to stack-based buffer overflow.

This vulnerability is traded as CVE-2024-6189. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-6189 | Tenda A301 15.13.08.12 /goform/WifiExtraSet fromSetWirelessRepeat wpapsk_crypto stack-based overflow

Related Posts

CVE-2023-6255 | Utarit Information Technologies SoliPay Mobile App up to 5.0.7 hard-coded credentials

CVE-2023-49087 | SimpleSAMLphp saml2/xml-security XML Signature unknown vulnerability

CVE-2024-9974 | SourceCodester Online Eyewear Shop 1.0 POST Request Master.php?f=add_to_card product_id sql injection

CVE-2024-2394 | SourceCodester Employee Management System 1.0 /Admin/add-admin.php avatar unrestricted upload