Lucene search
China National Vulnerability DatabaseCNVD-2024-14311HistoryMar 19, 2024 - 12:00 a.m.
Tenda AC18 setSchedWifi function buffer overflow vulnerability
2024-03-1900:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
tenda ac18
buffer overflow
vulnerability
setschedwifi
remote attacker
execute arbitrary code
denial of service
The Tenda AC18 is a router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda AC18 version 15.03.05.05, which originates from the parameter schedStartTime/schedEndTime in the setSchedWifi function of file /goform/openSchedWifi, which fails to correctly validate the length of the input data, and can be exploited by a remote attacker to execute arbitrary code on the system or cause a denial-of-service attack. vulnerability can be exploited by a remote attacker to execute arbitrary code on the system or cause a denial of service attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| tenda ac18 15. | eq | 03.05.05 |
Related
cve
cve
CVE-2024-2490
2024-03-15 10:15:08
nvd
nvd
CVE-2024-2490
2024-03-15 10:15:08
cvelist
cvelist
CVE-2024-2490 Tenda AC18 openSchedWifi setSchedWifi stack-based overflow
2024-03-15 09:31:04