### [CVE-2024-54887](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-54887)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an authenticated attacker to execute arbitrary code on the remote device in the context of the root user.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/0xor0ne/awesome-list
- https://github.com/IamAlch3mist/Awesome-Embedded-Systems-Vulnerability-Research
- https://github.com/Jalexander798/JA_Tools-Cybersecurity-Resource-2
- https://github.com/bachkhoasoft/awesome-list-ks