Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-46424

TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220 has a buffer overflow vulnerability in the UploadCustomModule function, which allows attackers to cause a Denial of Service (DoS) via the File parameter.

Published

2024-09-16T13:15:10.760

Last Modified

2024-09-17T14:35:30.557

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Primary
CWE-120
Type: Secondary
CWE-120

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	totolink	t8_firmware	4.1.5cu.861_b20230220	Yes
Hardware	totolink	t8	-	No

References

https://github.com/TTTJJJWWW/AHU-IoT-vulnerable/blob/main/TOTOLINK/AC1200T8/UploadCustomModule.md Exploit, Third Party Advisory ([email protected])