Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistTalosCVELIST:CVE-2023-49909
HistoryApr 09, 2024 - 2:12 p.m.

CVE-2023-49909

2024-04-0914:12:46
CWE-121
talos
raw.githubusercontent.com
stack-based buffer overflow
radio scheduling
tp-link ac1350
eap225 v3
remote code execution

7.6 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

16.4%

JSON

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.This vulnerability refers specifically to the overflow that occurs via the action parameter at offset 0x0045ab38 of the httpd_portal binary shipped with v5.1.0 Build 20220926 of the EAP225.

Related

cve 1
talos 1
talosblog 1
cve
cve
CVE-2023-49909
2024-04-09 15:15:30
talos
talos
Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) web interface Radio Scheduling stack-based buffer overflow vulnerability
2024-04-09 00:00:00
talosblog
talosblog
Vulnerability in some TP-Link routers could lead to factory reset
2024-04-10 16:56:04

7.6 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

16.4%

JSON
Related for CVELIST:CVE-2023-49909
cve1talos1talosblog1