A vulnerability was found in Tenda FH1202 1.2.0.14(408) and classified as critical. Affected by this issue is the function formSetClientState of the file /goform/SetClientState. The manipulation of the argument deviceId/limitSpeed/limitSpeedUp leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-258152. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: VulDB
Published: 2024-03-27T16:00:05.724Z
Updated: 2024-08-01T19:32:42.557Z
Reserved: 2024-03-27T07:04:13.877Z
Link: CVE-2024-2983
Vulnrichment
Updated: 2024-08-01T19:32:42.557Z
NVD
Status : Awaiting Analysis
Published: 2024-03-27T16:15:10.450
Modified: 2024-05-17T02:38:40.503
Link: CVE-2024-2983
Redhat
No data.