CVE Catalog

CVE-2024-57483

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.58%

43th percentile - higher than 43% of all known CVEs

Summary

A buffer overflow vulnerability has been discovered in the Tenda i24 device version V2.0.0.5 within the addWifiMacFilter function. An attacker can exploit this flaw to execute arbitrary code remotely or cause a system crash.

Risk Assessment

The risk for the organization includes potential takeover of the network device, which could lead to network integrity compromise and data leakage.

Recommendation

It is recommended to immediately update the firmware of the Tenda i24 device to the latest available version that addresses this vulnerability. If an update is not available, restrict access to the device's management interface to trusted networks only.

Original NVD description (English source)

Tenda i24 V2.0.0.5 is vulnerable to Buffer Overflow in the addWifiMacFilter function.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS