cve/CVE-2024-6965.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 10:17:57 +00:00

0xMarcio 8d17e0c8f8 Update CVE sources 2024-08-24 17:55

2024-08-24 17:55:21 +00:00

1.0 KiB

Raw Permalink Blame History

CVE-2024-6965

Description

A vulnerability has been found in Tenda O3 1.0.0.10 and classified as critical. Affected by this vulnerability is the function fromVirtualSet. The manipulation of the argument ip/localPort/publicPort/app leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-272119. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

POC

Reference

https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/O3V2.0/fromVirtualSet.md

Github

https://github.com/fkie-cad/nvd-json-data-feeds

1.0 KiB Raw Permalink Blame History

CVE-2024-6965

Description

POC

Reference

Github

1.0 KiB

Raw Permalink Blame History