CVE-2024-44557

CVSS 3.1 Score 8.0 of 10 (high)

Details

Published Aug 26, 2024
Updated: Aug 27, 2024
CWE ID 787
CWE ID 121

Summary

CVE-2024-44557 is a vulnerability in the Tenda AX1806 v1.0.0.1 that allows for a stack overflow through the iptv.stb.mode parameter in the setIptvInfo function. This flaw has a high severity rating, with a CVSS base score of 8.0, indicating significant risks to data confidentiality, integrity, and availability. It requires low privileges and no user interaction to exploit, with potential impacts on an adjacent network. Organizations using affected products are advised to apply patches or updates provided by Tenda as remediation steps to mitigate this vulnerability. If left unaddressed, this issue could lead to severe breaches of security within affected systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share