CVE-2024-36729

MEDIUM Year: 2024
CVSS v3 Score
6.3
Medium
Weakness Type
CWE-121
View all →

Vulnerability Description

TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action wizard_ipv6 with a sufficiently long reboot_type key.

Related Vulnerabilities

CVE-2017-14016

MEDIUM
CVSS:6.3(Medium)

A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. The application lacks proper validation of the length of user-supplied data prior to copying ...

CWE-1212017

CVE-2017-7936

MEDIUM
CVSS:6.3(Medium)

A stack-based buffer overflow issue was discovered in NXP i.MX 50, i.MX 53, i.MX 6ULL, i.MX 6UltraLite, i.MX 6SoloLite, i.MX 6Solo, i.MX 6DualLite, i.MX 6SoloX, i.MX 6Dual, i.MX 6Quad, i.MX 6DualPlus,...

CWE-1212017

CVE-2018-14792

MEDIUM
CVSS:6.3(Medium)

WECON PLC Editor version 1.3.3U may allow an attacker to execute code under the current process when processing project files.

CWE-1212018

CVE-2020-15417

MEDIUM
CVSS:6.3(Medium)

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. Authentication is not required to exploit this vuln...

CWE-1212020

CVE-2022-32502

MEDIUM
CVSS:6.3(Medium)

An issue was discovered on certain Nuki Home Solutions devices. There is a buffer overflow over the encrypted token parsing logic in the HTTP service that allows remote code execution. This affects Nu...

CWE-1212022