Stack Overflow Vulnerability in TP-Link Routers
CVE-2024-48712

Currently unrated

Key Information:

Vendor: TP-Link
Status: TL-WDR7660
Vendor: CVE Published:; 15 October 2024

Summary

In the TP-Link TL-WDR7660 version 1.0, a vulnerability exists in the rtRuleJsonToBin function, which processes parameter string names without adequate validation. This oversight may allow attackers to exploit the router's stack, potentially leading to unauthorized access or system crashes.

References

https://github.com/sezangel/IOT-vul/blob/main/TPlink/TL-W...

Timeline

Vulnerability published
Oct 15, 2024