CVE-2024-57544

Name of the Vulnerable Software and Affected Versions Linksys E8450 version 1.2.00.360516

Description A buffer overflow issue was discovered, where the lan ipaddr field is copied to the stack without length verification. This could allow a remote attacker to cause a denial of service. The vulnerability is related to the sub 422eb8 function and the strcpy parameter, which involves copying a buffer without checking the size of the input data.

Recommendations For Linksys E8450 version 1.2.00.360516, consider disabling the sub 422eb8 function as a temporary workaround until a patch is available. Restrict access to the lan ipaddr field to minimize the risk of exploitation. Avoid using the strcpy parameter in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.