ГлавнаяУязвимости → CVE-2024-33820
7.5высокая

CVE-2024-33820

Описание

Totolink AC1200 Wireless Dual Band Gigabit Router A3002R_V4 Firmware V4.0.0-B20230531.1404 is vulnerable to Buffer Overflow via the formWlEncrypt function of the boa server. Specifically, they exploit the length of the wlan_ssid field triggers the overflow.

Затрагиваемое ПО
Totolink A3002r firmwareTotolink A3002r
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://gist.github.com/Swind1er/ee095fbfe13f77a5b45b39a5aa82bd17https://gist.github.com/Swind1er/ee095fbfe13f77a5b45b39a5aa82bd17