CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-11061

A vulnerability classified as critical was found in Tenda AC10 16.03.10.13. Affected by this vulnerability is the function FUN_0044db3c of the file /goform/fast_setting_wifi_set. The manipulation of the argument timeZone leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.8%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 9.0

References

https://tasty-foxtrot-3a8.notion.site/Tenda-AC10v4-FUN_0044db3c-stack-overflow-13a0448e619580ae96fee2899545e159
https://vuldb.com/?ctiid.283807
https://vuldb.com/?id.283807
https://vuldb.com/?submit.440825
https://www.tenda.com.cn/

Products affected by CVE-2024-11061

Tenda » Ac10 » Version: 4.0

cpe:2.3:h:tenda:ac10:4.0
Tenda » Ac10 Firmware » Version: 16.03.10.13

cpe:2.3:o:tenda:ac10_firmware:16.03.10.13

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-11061

Products

Pricing

Contact Us