CVE-2024-44563

CVSS 3.1 Score 8.0 of 10 (high)

Details

Published Aug 26, 2024
Updated: Aug 27, 2024
CWE ID 787
CWE ID 121

Summary

CVE-2024-44563 identifies a stack overflow vulnerability in Tenda AX1806 version 1.0.0.1, specifically through the iptv.stb.port parameter in the setIptvInfo function. This vulnerability poses a high severity risk, with a CVSS base score of 8.0, allowing potential attackers to exploit it with low privileges and no user interaction required, primarily from an adjacent network. The risks include significant impacts on confidentiality, integrity, and availability of affected systems. Remediation steps for organizations include applying patches or updates provided by Tenda to mitigate the vulnerability's effects. Failure to address this vulnerability could result in unauthorized access or manipulation of sensitive information within the network infrastructure.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share