Buffer Overflow Vulnerability in LBT-T300-mini by Shenzhen Libituo Technology Co., Ltd
CVE-2024-29243

Currently unrated

Key Information:

Vendor: Shenzhen Libituo Technology Co., Ltd
Status: LBT-T300-mini
Vendor: CVE Published:; 21 March 2024

🔔 Create Shenzhen Libituo Technology Co., Ltd Vulnerability Alert

What is CVE-2024-29243?

A buffer overflow has been identified in the LBT-T300-mini v1.2.9, specifically triggered through the vpn_client_ip parameter in the /apply.cgi endpoint. This flaw may allow an attacker to exploit the vulnerability, potentially compromising the device’s integrity and security. Immediate action is recommended to mitigate risks associated with unauthorized access and control.

References

https://github.com/AdamRitz/lbtvul/blob/main/t300mini-2.md

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 21, 2024
Vulnerability Reserved
Mar 19, 2024