CVE-2024-44565

CVSS 3.1 Score 8.0 of 10 (high)

Details

Published Aug 26, 2024
Updated: Aug 27, 2024
CWE ID 121
CWE ID 787

Summary

CVE-2024-44565 identifies a stack overflow vulnerability in the Tenda AX1806 router, specifically through the serverName parameter in the function form_fast_setting_internet_set. This security flaw has a high severity rating (base score of 8.0) and affects products with version 1.0.0.1, posing significant risks to confidentiality, integrity, and availability. Exploitation of this vulnerability can occur via an adjacent network without requiring user interaction, making it accessible to potential attackers with low privileges. Organizations are advised to update their firmware or apply patches provided by Tenda to mitigate the risk associated with this vulnerability. Failure to address this issue could lead to unauthorized access and control over affected devices, resulting in serious security breaches.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share