ID
VAR-202410-3229
CVE
CVE-2024-48712
TITLE
TP-LINK TL-WDR7660 rtRuleJsonTobin function buffer overflow vulnerability
Trust: 0.6
sources:
CNVD: CNVD-2024-47286
DESCRIPTION
In TP-Link TL-WDR7660 1.0, the rtRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack overflow vulnerabilities. TP-LINK TL-WDR7660 is a Gigabit router from TP-LINK of China. TP-LINK TL-WDR7660 version 1.0 has a buffer overflow vulnerability. Remote attackers can exploit this vulnerability to execute arbitrary code on the system or cause a denial of service attack
Trust: 1.44
sources:
NVD: CVE-2024-48712 //
CNVD: CNVD-2024-47286
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2024-47286
AFFECTED PRODUCTS
| vendor: | tp link | model: | tl-wdr7660 | scope: | eq | version: | 1.0 | Trust: 0.6 |
sources:
CNVD: CNVD-2024-47286
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
CNVD: CNVD-2024-47286 //
NVD: CVE-2024-48712
PROBLEMTYPE DATA
| problemtype: | CWE-120 | Trust: 1.0 |
sources:
NVD: CVE-2024-48712
EXTERNAL IDS
| db: | NVD | id: | CVE-2024-48712 | Trust: 1.6 |
| db: | CNVD | id: | CNVD-2024-47286 | Trust: 0.6 |
sources:
CNVD: CNVD-2024-47286 //
NVD: CVE-2024-48712
REFERENCES
| url: | https://github.com/sezangel/iot-vul/blob/main/tplink/tl-wdr7660/3/readme.md | Trust: 1.0 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2024-48712 | Trust: 0.6 |
sources:
CNVD: CNVD-2024-47286 //
NVD: CVE-2024-48712
SOURCES
| db: | CNVD | id: | CNVD-2024-47286 |
| db: | NVD | id: | CVE-2024-48712 |
LAST UPDATE DATE
2024-12-11T22:57:48.959000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2024-47286 | date: | 2024-12-06T00:00:00 |
| db: | NVD | id: | CVE-2024-48712 | date: | 2024-10-16T17:35:04.483 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2024-47286 | date: | 2024-12-05T00:00:00 |
| db: | NVD | id: | CVE-2024-48712 | date: | 2024-10-15T21:15:11.177 |