CVE-2024-28550 โ€” Stack-based Buffer Overflow in Ac18 Firmware

CWE-121 โ€” Stack-based Buffer Overflow3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.1%
top 71.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Tenda Ac18 Firmware
Timeline
PublishedMar 18

Description

Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the filePath parameter of formExpandDlnaFile function.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages1 packages

โ–ถNVDtenda/ac18_firmware15.03.05.05

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-jfx8-q4hf-wwcf: Tenda AC18 V15โ†—2024-03-18
โ–ถ
CVEList
CVE-2024-28550: Tenda AC18 V15โ†—2024-03-18
โ–ถ
CVE-2024-28550 โ€” Stack-based Buffer Overflow in Tenda | cvebase