Lucene search

[email protected]NVD:CVE-2024-33180

HistoryJul 16, 2024 - 4:15 p.m.

CVE-2024-33180

2024-07-1616:15:04

CWE-120

CWE-787

[email protected]

web.nvd.nist.gov

tenda ac18

buffer overflow

ip address

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

42.8%

JSON

Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnerability via the deviceId parameter at ip/goform/saveParentControlInfo.

Affected configurations

Nvd

Node

tendacnac18_firmwareMatch15.03.3.10

AND

tendacnac18Match-

VendorProductVersionCPE
tendacnac18_firmware15.03.3.10cpe:2.3:o:tendacn:ac18_firmware:15.03.3.10:*:*:*:*:*:*:*
tendacnac18-cpe:2.3:h:tendacn:ac18:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tendacn	ac18_firmware	15.03.3.10	cpe:2.3:o:tendacn:ac18_firmware:15.03.3.10:::::::*
tendacn	ac18	-	cpe:2.3:h:tendacn:ac18:-:::::::*

References

palm-vertebra-fe9.notion.site/saveParentControlInfo_1-7c9695d0251945ae8006db705b9b80ac

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

42.8%

JSON

Related for NVD:CVE-2024-33180

vulnrichment1 cve1 cvelist1