CVE-2024-46419

TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220 has a buffer overflow vulnerability in the setWizardCfg function via the ssid5g parameter.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:totolink:t8_firmware:4.1.5cu.861_b20230220:*:*:*:*:*:*:*
cpe:2.3:h:totolink:t8:-:*:*:*:*:*:*:*

History

17 Sep 2024, 14:35

Type Values Removed Values Added
Summary
  • (es) TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220 tiene una vulnerabilidad de desbordamiento de búfer en la función setWizardCfg a través del parámetro ssid5g.

17 Sep 2024, 12:03

Type Values Removed Values Added
First Time Totolink
Totolink t8 Firmware
Totolink t8
References () https://github.com/TTTJJJWWW/AHU-IoT-vulnerable/blob/main/TOTOLINK/AC1200T8/setWizardCfg.md - () https://github.com/TTTJJJWWW/AHU-IoT-vulnerable/blob/main/TOTOLINK/AC1200T8/setWizardCfg.md - Exploit, Third Party Advisory
CPE cpe:2.3:o:totolink:t8_firmware:4.1.5cu.861_b20230220:*:*:*:*:*:*:*
cpe:2.3:h:totolink:t8:-:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
CWE CWE-120

16 Sep 2024, 14:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-16 14:15

Updated : 2024-09-17 14:35


NVD link : CVE-2024-46419

Mitre link : CVE-2024-46419

CVE.ORG link : CVE-2024-46419


JSON object : View

Products Affected

totolink

  • t8_firmware
  • t8
CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')