CVE-2024-6189 | Tenda A301 15.13.08.12 /goform/WifiExtraSet fromSetWirelessRepeat wpapsk_crypto stack-based overflow

Posted by Angelo Barbosa | Jun 20, 2024 | CVE

A vulnerability was found in Tenda A301 15.13.08.12. It has been classified as critical. Affected is the function fromSetWirelessRepeat of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto leads to stack-based buffer overflow.

This vulnerability is traded as CVE-2024-6189. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-6189 | Tenda A301 15.13.08.12 /goform/WifiExtraSet fromSetWirelessRepeat wpapsk_crypto stack-based overflow

Related Posts

CVE-2024-30304 | Adobe Acrobat Reader up to 20.005.30539/23.008.20470 use after free (apsb24-07)

CVE-2024-22588 | Kwik 745fd4e2 Encryption Key Privilege Escalation (Issue 31)

CVE-2024-1778 | Admin Side Data Storage for Contact Form 7 Plugin up to 1.1.1 on WordPress Bookmark Status authorization

CVE-2024-25016 | IBM MQ/MQ Appliance 9.0/9.1/9.2/9.3 denial of service (XFDB-281279)