CVE-2024-46045

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Published Sep 13, 2024
CWE ID 121

Summary

CVE-2024-46045 identifies a stack overflow vulnerability within the frmL7PlotForm function of the Tenda CH22 V1.0.0.6(468) product. This vulnerability poses a medium severity risk, with an exploitability score of 2.1 and can be exploited over an adjacent network without requiring user interaction or elevated privileges. The attack complexity is classified as low, and while there is no impact on confidentiality or integrity, there is a high potential for availability loss. To remediate this issue, organizations should apply any available patches provided by Tenda or implement network segmentation to restrict access to affected devices. Failure to address this vulnerability could lead to service disruptions within the organization’s network infrastructure.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share