4 matches found
CVE-2022-23918
A stack-based buffer overflow vulnerability exists in the confsrv setmfrule functionality of TCL LinkHub Mesh Wifi MS1G0001.0014. A specially-crafted network packet can lead to stack-based buffer overflow. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability...
CVE-2022-23918
A stack-based buffer overflow vulnerability exists in the confsrv setmfrule functionality of TCL LinkHub Mesh Wifi MS1G0001.0014. A specially-crafted network packet can lead to stack-based buffer overflow. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability...
CVE-2022-23918
CVE-2022-23918 is a stack-based buffer overflow in TCL LinkHub Mesh Wifi MS1G_00_01.00_14, specifically in confsrv set_mf_rule. Talos details show that during protobuf processing, the code copies ethAddr (and name) into small stack buffers using memcpy with length based on strlen, enabling overfl...
TCL LinkHub Mesh Wifi confsrv set_mf_rule stack-based buffer overflow vulnerability
Talos Vulnerability Report TALOS-2022-1455 TCL LinkHub Mesh Wifi confsrv setmfrule stack-based buffer overflow vulnerability August 1, 2022 CVE Number CVE-2022-23919,CVE-2022-23918 SUMMARY A stack-based buffer overflow vulnerability exists in the confsrv setmfrule functionality of TCL LinkHub Mes...