CVE-2024-2988

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Mar 27, 2024

Updated: May 17, 2024

CWE ID 79

Summary

CVE-2024-2988 is a newly disclosed critical vulnerability affecting the Tenda FH1203 2.0.1.6 router. ThefromSetRouteStatic function in the /goform/fromRouteStatic file is the source of this issue, which can be triggered by manipulating the argument entrys. This manipulation results in a stack-based buffer overflow, enabling remote attackers to launch exploits. The vulnerability has been made public, and no response has been received from the vendor regarding this disclosure. The identifier VDB-258157 has been assigned to this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vCrEOm
https://www.cve.org/CVERecord?id=CVE-2024-2988
https://nvd.nist.gov/vuln/detail/CVE-2024-2988

Back to Vulnerability Database

CVE-2024-2988

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations