Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistTalosCVELIST:CVE-2023-49912
HistoryApr 09, 2024 - 2:12 p.m.

CVE-2023-49912

2024-04-0914:12:46
CWE-121
talos
raw.githubusercontent.com
1
buffer overflow
tp-link ac1350
remote code execution
http request
authentication
cve-2023-49912

7.6 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

16.4%

JSON

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.This vulnerability refers specifically to the overflow that occurs via the profile parameter at offset 0x4224b0 of the httpd binary shipped with v5.0.4 Build 20220216 of the EAP115.

Related

cve 1
talos 1
talosblog 1
cve
cve
CVE-2023-49912
2024-04-09 15:15:30
talos
talos
Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) web interface Radio Scheduling stack-based buffer overflow vulnerability
2024-04-09 00:00:00
talosblog
talosblog
Vulnerability in some TP-Link routers could lead to factory reset
2024-04-10 16:56:04

7.6 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

16.4%

JSON
Related for CVELIST:CVE-2023-49912
cve1talos1talosblog1