Buffer Overflow Vulnerability in Wavlink AC3000 M33A8
CVE-2024-36290
Currently unrated
What is CVE-2024-36290?
A buffer overflow vulnerability exists within the login.cgi Goto_chidx() functionality of the Wavlink AC3000 M33A8 device. This flaw can be exploited through a specially crafted HTTP request, allowing an attacker to trigger a stack-based buffer overflow. Potential exploitation does not require authentication, making it easier for malicious actors to carry out attacks. Users of affected versions need to be aware of the associated risks and implement necessary security measures.