Remote Code Execution Vulnerability in Tenda AC9 v.3.0 Firmware
CVE-2024-25751

Currently unrated

Key Information:

Vendor: Tenda
Status: Ac9 Firmware
Vendor: CVE Published:; 26 February 2024

Summary

A Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0 with firmware version v.15.03.06.42_multi allows a remote attacker to execute arbitrary code via the fromSetSysTime function.

References

https://github.com/TimeSeg/IOT_CVE/blob/main/tenda/AC9V3/...

Timeline

Vulnerability published
Feb 26, 2024
Vulnerability Reserved
Feb 12, 2024