cve/CVE-2024-54809.md at 93476d6c370e261fdc1b2b03a08066de45e4892d

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00

0xMarcio 1fb02038e8 Update CVE sources 2025-09-29 16:08

2025-09-29 16:08:36 +00:00

Description

** UNSUPPORTED WHEN ASSIGNED ** Netgear Inc WNR854T 1.5.2 (North America) contains a stack-based buffer overflow vulnerability in the parse_st_header function due to use of a request header parameter in a strncpy where size is determined based on the input specified. By sending a specially crafted packet, an attacker can take control of the program counter and hijack control flow of the program to execute arbitrary system commands.

POC

Reference

https://faultpoint.com/post/2025-03-25-8-cves-on-the-wnr854t-junkyard/#809

Github

No PoCs found on GitHub currently.

932 B Raw Blame History

CVE-2024-54809

Description

POC

Reference

Github

932 B

Raw Blame History