CVE-2024-28553

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Mar 12, 2024
Updated: Mar 21, 2024
CWE ID 787

Summary

CVE-2024-28553: A critical stack overflow vulnerability has been identified in the Tenda AC18 router model running firmware V15.03.05.05. This issue specifically affects the fromAddressNat function within the entrys parameter, allowing an attacker to potentially execute arbitrary code or cause the device to crash if they can send a crafted packet to the router. Exploitation of this vulnerability could lead to serious consequences, including unauthorized access or denial of service. Users are strongly advised to update their router firmware as soon as a patch becomes available.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share