PT-2024-9033 · Tp Link · Tp-Link Vn020 F3V(T) Tt V6.2.1021
Mohamed Maatallah
·
Published
2024-11-15
·
Updated
2024-11-19
·
CVE-2024-11237
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
TP-Link VN020 F3v(T) TT V6.2.1021
Description:
A critical vulnerability has been found in the DHCP DISCOVER Packet Parser component of TP-Link devices. The manipulation of the
hostname argument leads to a stack-based buffer overflow. This issue can be exploited remotely, and the exploit has been disclosed to the public. The vulnerability poses significant security risks, and users are urged to update their firmware to the latest version to mitigate potential threats.Recommendations:
Update the firmware to the latest version available to mitigate risks.
As a temporary workaround, consider restricting access to the DHCP DISCOVER Packet Parser component until a patch is available.
Ensure your devices are updated and patched immediately to mitigate potential threats.
Exploit
Fix
Memory Corruption
Stack Overflow
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Tp-Link Vn020 F3V(T) Tt V6.2.1021