CVE-2024-11237

Published Nov 15, 2024

Last updated 2 days ago

CVSS high 8.7

Overview

Description
A vulnerability, which was classified as critical, has been found in TP-Link VN020 F3v(T) TT_V6.2.1021. Affected by this issue is some unknown functionality of the component DHCP DISCOVER Packet Parser. The manipulation of the argument hostname leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Source
cna@vuldb.com
NVD status
Undergoing Analysis

Risk scores

CVSS 4.0

Type
Secondary
Base score
8.7
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity
HIGH

CVSS 3.1

Type
Secondary
Base score
7.5
Impact score
3.6
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity
HIGH

CVSS 2.0

Type
Secondary
Base score
7.8
Impact score
6.9
Exploitability score
10
Vector string
AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

cna@vuldb.com
CWE-119

Social media

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score

1

  1. آسیب پذیری جدیدی با کد شناسایی CVE-2024-11237 برای یکی از مدل های روتر TP-LINK به نام VN020 F3v منتشر شده است . دلیل اصلی آسیب پذیری سرویس Dhcp این نوع مودم ها بوده که با تغییر دادن و ارسال پکت DHCP DISCOVER ، آسیب پذیری مربوطه قابل اکسپلویت می باشد. https://t.co/Poz3aKYxT1 https

    @AmirHossein_sec

    17 Nov 2024

    10 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨 CVE-2024-11237 (Published: 2024-11-15) affects TP-Link devices. This medium-severity vulnerability can be exploited in specific versions. 🔒 Ensure your firmware is updated to the latest version to mitigate risks. For more info, visit: https://t.co/jsfhhEDeDk #CyberSecurity… h

    @transilienceai

    17 Nov 2024

    6 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. 🚨 CVE-2024-11237 (Published: 2024-11-15) - A medium severity vulnerability affects TP-Link devices. Ensure your firmware is updated to the latest version to mitigate risks. Check for updates and secure your network! More info: https://t.co/jsfhhEDeDk #CyberSecurity #TPLink… http

    @transilienceai

    17 Nov 2024

    19 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. 🚨 CVE-2024-11237 (Published: 2024-11-15) affects TP-Link devices. Users should ensure their firmware is updated to the latest version to mitigate potential vulnerabilities. Stay secure and check for updates regularly! More info: https://t.co/jsfhhEDeDk #CyberSecurity #TPLink… ht

    @transilienceai

    17 Nov 2024

    19 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. 🚨 CVE-2024-11237 (Published: 2024-11-15) affects TP-Link devices. Exploited versions include vulnerable firmware. 🛡️ Remediation: Update to the latest firmware available at [TP-Link](https://t.co/jsfhhEDeDk) to secure your devices. Stay safe! #CyberSecurity #TPLink #CVE

    @transilienceai

    17 Nov 2024

    29 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. 🚨 CVE-2024-11237 (Published: 2024-11-15) affects TP-Link devices. This medium-severity vulnerability can be exploited in specific versions. 🛡️ Ensure your devices are updated to the latest firmware to mitigate risks. For more info, visit: https://t.co/jsfhhEDeDk #CyberSecurity…

    @transilienceai

    17 Nov 2024

    3 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. 🚨 CVE-2024-11237 (Published: 2024-11-15) - A medium severity vulnerability affects TP-Link devices. Ensure your firmware is updated to the latest version to mitigate risks. For more details and remediation steps, visit: https://t.co/jsfhhEDeDk #CyberSecurity #TPLink… https://t.c

    @transilienceai

    17 Nov 2024

    14 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. 🚨 CVE-2024-11237 (Published: 2024-11-15) affects TP-Link devices. This medium-severity vulnerability impacts specific versions. To safeguard your network, ensure you update to the latest firmware available at https://t.co/jsfhhEDeDk. Stay secure! #CyberSecurity #TPLink #CVE

    @transilienceai

    17 Nov 2024

    20 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  9. 🚨 CVE-2024-11237 (Published: 2024-11-15) - A critical vulnerability affecting TP-Link devices. Ensure your firmware is updated to the latest version to mitigate risks. For more details and remediation steps, visit: https://t.co/jsfhhEDeDk #CyberSecurity #TPLink… https://t.co/d04

    @transilienceai

    17 Nov 2024

    14 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. 🚨 CVE-2024-11237 (Published: 2024-11-15) - A critical vulnerability affecting TP-Link devices. Exploited in multiple versions, this flaw poses serious security risks. 🛡️ Ensure your firmware is updated to the latest version to mitigate potential threats. Stay safe! More info:…

    @transilienceai

    17 Nov 2024

    10 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. 🚨 CVE-2024-11237 (Published: 2024-11-15) - A critical vulnerability affecting TP-Link products. Exploited in specific versions, this flaw poses serious security risks. Ensure your devices are updated to the latest firmware to mitigate potential threats. Stay safe! 🔒 More info:…

    @transilienceai

    17 Nov 2024

    10 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  12. 🚨 CVE-2024-11237 (Published: 2024-11-15) - A critical vulnerability affecting TP-Link devices. Exploited in specific versions, this flaw poses significant risks. Remediation is crucial! Check out the proof of concept here: https://t.co/VezC8tB7gK #CyberSecurity #TPLink… https://

    @transilienceai

    17 Nov 2024

    16 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  13. 🚨 CVE-2024-11237 (Published: 2024-11-15) - A critical vulnerability affecting TP-Link devices. Exploited in specific versions, this flaw poses serious risks. 🛡️ Remediation is crucial! Check out the proof of concept here: https://t.co/VezC8tB7gK #CyberSecurity #TPLink… https://

    @transilienceai

    17 Nov 2024

    11 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  14. 🚨 CVE-2024-11237 (Published: 2024-11-15) - A critical vulnerability affecting TP-Link devices. Exploited in specific versions, this flaw poses significant security risks. Ensure your devices are updated and patched. For remediation details, check out the GitHub link:… https://t.

    @transilienceai

    17 Nov 2024

    8 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  15. 🚨 CVE-2024-11237 (Published: 2024-11-15) - A critical vulnerability affecting TP-Link products. Exploited in specific versions, this flaw poses serious security risks. 🚫 Ensure your devices are updated and patched to mitigate potential threats. For more details, check:… https:/

    @transilienceai

    17 Nov 2024

    8 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  16. 🚨 CVE-2024-11237 (Published: 2024-11-15) - A critical vulnerability affecting TP-Link products. Exploited in various versions, this flaw poses significant risks. Remediation is crucial! Check out the details and mitigation steps here: https://t.co/GMVZnlls6a #CyberSecurity… http

    @transilienceai

    17 Nov 2024

    14 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  17. 🚨 CVE-2024-11237 (Published: 2024-11-15) - A critical vulnerability affecting TP-Link products. Exploited in various versions, this flaw poses significant risks. 🛡️ Ensure your devices are updated and patched immediately. For more details, check out the remediation guide:… http

    @transilienceai

    17 Nov 2024

    8 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  18. Threat Alert: Critical TP-Link DHCP Vulnerability Let Attackers Execute Arbitrary Code Remotel CVE-2024-11237 Severity: ⚠️ Critical Maturity: 💢 Emerging Learn more: https://t.co/7EmjiZsdRS #CyberSecurity #ThreatIntel #InfoSec

    @fletch_ai

    16 Nov 2024

    84 Impressions

    2 Retweets

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  19. CVE-2024-11237 Critical Remote Exploit in TP-Link DHCP DISCOVER Packet Parser A critical vulnerability has been discovered in TP-Link VN020 F3v(T) TT_V6.2.1021. It affects an unknown feature of the DHCP DISCOVER ... https://t.co/rp5YLmcWjz

    @VulmonFeeds

    15 Nov 2024

    44 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  20. CVE-2024-11237 A vulnerability, which was classified as critical, has been found in TP-Link VN020 F3v(T) TT_V6.2.1021. Affected by this issue is some unknown functionality of the co… https://t.co/xrz2vJcQtY

    @CVEnew

    15 Nov 2024

    298 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

References