CVE-2024-7613

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 12, 2024

Updated: Aug 21, 2024

CWE ID 787

CWE ID 120

Summary

CVE-2024-7613 is a critical vulnerability affecting Tenda FH1206 version 1.2.0.8(8155). The issue lies within the fromGstDhcpSetSer function in the /goform/GstDhcpSetSer file. An attacker can exploit this buffer overflow vulnerability by manipulating the argument dips. The exploit can be initiated remotely, and the vulnerability has been disclosed to the public. Despite early notification, the vendor has not responded or issued a patch.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Tenda FH1206

Affected Vendors

Shenzhen Tenda Technology Co. Ltd

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xlzpY_
https://www.cve.org/CVERecord?id=CVE-2024-7613
https://nvd.nist.gov/vuln/detail/CVE-2024-7613

Back to Vulnerability Database