CVE-2024-32302Out-of-bounds Write in Fh1202 Firmware

CWE-787Out-of-bounds WriteCWE-121Stack-based Buffer Overflow3 documents3 sources
Severity
6.3MEDIUMNVD
EPSS
0.2%
top 63.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Tenda Fh1202 Firmware
Timeline
PublishedApr 17

Description

Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LExploitability: 2.8 | Impact: 3.4

Affected Packages1 packages

NVDtenda/fh1202_firmware1.2.0.14\(408\)

🔴Vulnerability Details

2
CVEList
CVE-2024-32302: Tenda FH1202 v12024-04-17
GHSA
GHSA-5vfq-q3p7-564q: Tenda FH1202 v12024-04-17
CVE-2024-32302 — Out-of-bounds Write in Tenda | cvebase