First published: Wed Aug 07 2024(Updated: )
A vulnerability, which was classified as critical, has been found in Tenda i22 1.0.0.3(4687). This issue affects the function formApPortalOneKeyAuth of the file /goform/apPortalOneKeyAuth. The manipulation of the argument data leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Tenda i22 | =1.0.0.3\(4687\) | |
Tenda I22 Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-7583 has been classified as a critical vulnerability.
CVE-2024-7583 affects Tenda i22 firmware version 1.0.0.3(4687).
To mitigate CVE-2024-7583, upgrade the Tenda i22 firmware to a version that addresses the buffer overflow vulnerability.
CVE-2024-7583 is a buffer overflow vulnerability affecting the function formApPortalOneKeyAuth.
Exploiting CVE-2024-7583 may allow an attacker to execute arbitrary code on the affected device.