CVE-2024-4245 – A vulnerability, which was classified as critical, has been found in Tenda i21 …

27 April 2024

Vuln ID: CVE-2024-4245

Published: 2024-04-27 08:15:06.277

Description: A vulnerability, which was classified as critical, has been found in Tenda i21 1.0.0.14(4656). Affected by this issue is the function formQosManageDouble_user. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. The attack may be launched remotely. The identifier of this vulnerability is VDB-262136. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Base Score: 8.8 – HIGH

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Source: NVD.NIST.GOV

Date:

27 April 2024

Categorie(s):

NVD

Tag(s):

NVD

Critical Start adds multiple frameworks to Risk Assessments9 May 2024
Skyhigh Security boosts data protection measures with AI innovations9 May 2024
Microsoft once again under fire over cloud software licensing9 May 2024
F5’s Next Central Manager Vulnerabilities Let Hackers Take Full Device Control Remotely9 May 2024
Polish Government Under Sophisticated Cyber Attack From APT28 Hacker Group9 May 2024