Stack Overflow Vulnerability in TRENDnet TEW-814DAP Wireless Access Point
CVE-2024-37645

Currently unrated

Key Information:

Vendor: TRENDnet
Status: TEW-814DAP
Vendor: CVE Published:; 14 June 2024

What is CVE-2024-37645?

A security flaw has been identified in the TRENDnet TEW-814DAP wireless access point, specifically in the /formSysLog endpoint. This vulnerability arises from improper handling of the submit-url parameter, allowing attackers to exploit stack overflow conditions, which may lead to unauthorized access or system instability. Users of the affected firmware version are strongly advised to apply security updates and monitor systems for unusual activity.

References

https://github.com/s4ndw1ch136/IOT-vuln-reports/blob/main...

Timeline

Vulnerability published
Jun 14, 2024
Vulnerability Reserved
Jun 10, 2024