Stack Overflow Vulnerability in Tenda W30E Firmware
CVE-2024-32290

Currently unrated

Key Information:

Vendor: Tenda Technology
Status: W30e Firmware
Vendor: CVE Published:; 17 April 2024

Summary

The Tenda W30E wireless router's firmware version v1.0 v1.0.1.25(633) is susceptible to a stack overflow vulnerability. This issue arises via the page parameter within the fromAddressNat function, potentially enabling remote attackers to execute arbitrary code. It is critical for users to apply available firmware updates to mitigate risks associated with this vulnerability and protect their network devices from unauthorized access and exploitation.

References

https://github.com/abcdefg-png/IoT-vulnerable/blob/main/T...

Timeline

Vulnerability published
Apr 17, 2024
Vulnerability Reserved
Apr 12, 2024