CVE-2024-4066

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Apr 23, 2024

Updated: Apr 24, 2024

CWE ID 121

Summary

CVE-2024-4066 is a critical vulnerability that affects the Tenda AC8 16.03.34.09 router. The vulnerability is found in the function fromAdvSetMacMtuWan of the file /goform/AdvSetMacMtuWan and allows for a remote stack-based buffer overflow attack by manipulating certain arguments. The exploit has been disclosed publicly and the vendor has not responded. This vulnerability poses a high risk to organizations as it can result in complete confidentiality, integrity, and availability compromise of the affected device.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vkII7u
https://www.cve.org/CVERecord?id=CVE-2024-4066
https://nvd.nist.gov/vuln/detail/CVE-2024-4066

Back to Vulnerability Database

CVE-2024-4066

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations