CVE-2024-28553
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2024-28553: A critical stack overflow vulnerability has been identified in the Tenda AC18 router model running firmware V15.03.05.05. This issue specifically affects the fromAddressNat function within the entrys parameter, allowing an attacker to potentially execute arbitrary code or cause the device to crash if they can send a crafted packet to the router. Exploitation of this vulnerability could lead to serious consequences, including unauthorized access or denial of service. Users are strongly advised to update their router firmware as soon as a patch becomes available.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Shenzhen Tenda Technology Co. Ltd