Buffer Overflow Vulnerability in TOTOLINK AC1200 T8 4.1.5cu.862
CVE-2024-8079

9.8CRITICAL

Key Information:

Vendor
Totolink
Status
Ac1200 T8
Vendor
CVE Published:
22 August 2024

Summary

A vulnerability exists in the TOTOLINK AC1200 T8 router version 4.1.5cu.862_B20230228 that impacts the exportOvpn function, leading to potential buffer overflow attacks. This can be exploited remotely, allowing attackers to manipulate the router's operations without physical access. Despite early notification to the vendor regarding this vulnerability, there has been no response. Users are advised to evaluate their security measures and consider applying necessary patches or updates as they become available.

Affected Version(s)

AC1200 T8 4.1.5cu.862_B20230228

References

https://vuldb.com/?id.275561
vdb-entrytechnical-description
https://vuldb.com/?ctiid.275561
signaturepermissions-required
https://vuldb.com/?submit.390937
third-party-advisory

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

Collectors

NVD DatabaseMitre Database

Credit

FPT IS Security (VulDB User)
.