ByteOS Network

Vulnerability Details :

CVE-2024-39181

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-09 Jul, 2024 | 00:00

Updated At-20 Nov, 2024 | 16:05

Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 was discovered to contain a buffer overflow via the ApCliSsid parameter in thegenerate_conf_router() function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:mitre

Assigner Org ID:8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At:09 Jul, 2024 | 00:00

Updated At:20 Nov, 2024 | 16:05

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
https://github.com/SunsetR/Vulnerability-information/blob/main/LBT-T300-T400_ApCliSsid_Buffer%20overflow.md	N/A

Hyperlink: https://github.com/SunsetR/Vulnerability-information/blob/main/LBT-T300-T400_ApCliSsid_Buffer%20overflow.md

Resource: N/A

▼Authorized Data Publishers (ADP)

1. CISA ADP Vulnrichment

Problem Types

Type	CWE ID	Description
CWE	CWE-120	CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Type: CWE

CWE ID: CWE-120

Description: CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Metrics

Version	Base score	Base severity	Vector
3.1	6.5	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Version: 3.1

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Metrics Other Info

2. CVE Program Container

References

Hyperlink	Resource
https://github.com/SunsetR/Vulnerability-information/blob/main/LBT-T300-T400_ApCliSsid_Buffer%20overflow.md	x_transferred

Hyperlink: https://github.com/SunsetR/Vulnerability-information/blob/main/LBT-T300-T400_ApCliSsid_Buffer%20overflow.md

Resource:

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:cve@mitre.org

Published At:09 Jul, 2024 | 21:15

Updated At:20 Aug, 2025 | 15:39

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	6.5	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Secondary

Version: 3.1

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CPE Matches

szlbt>>lbt-t300-t400_firmware>>3.2

cpe:2.3:o:szlbt:lbt-t300-t400_firmware:3.2:*:*:*:*:*:*:*

szlbt>>lbt-t300-t400>>-

cpe:2.3:h:szlbt:lbt-t300-t400:-:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-120	Secondary	134c704f-9b21-4f2e-91b3-4a467353bcc0

CWE ID: CWE-120

Type: Secondary

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

References

Hyperlink	Source	Resource
https://github.com/SunsetR/Vulnerability-information/blob/main/LBT-T300-T400_ApCliSsid_Buffer%20overflow.md	cve@mitre.org	Exploit Third Party Advisory
https://github.com/SunsetR/Vulnerability-information/blob/main/LBT-T300-T400_ApCliSsid_Buffer%20overflow.md	af854a3a-2127-422b-91ae-364da2661108	Exploit Third Party Advisory

Hyperlink: https://github.com/SunsetR/Vulnerability-information/blob/main/LBT-T300-T400_ApCliSsid_Buffer%20overflow.md

Source: cve@mitre.org

Resource:

Exploit

Third Party Advisory

Hyperlink: https://github.com/SunsetR/Vulnerability-information/blob/main/LBT-T300-T400_ApCliSsid_Buffer%20overflow.md

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Exploit

Third Party Advisory

Similar CVEs

58Records found

CVE-2024-37606

Matching Score-4

Assigner-MITRE Corporation

View Details

Matching Score-4

Assigner-MITRE Corporation

CVSS Score-6.5||MEDIUM

EPSS-0.17% / 38.56%

7 Day CHG~0.00%

Published-17 Dec, 2024 | 00:00

Updated-21 May, 2025 | 16:01

A Stack overflow vulnerability in D-Link DCS-932L REVB_FIRMWARE_2.18.01 allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.

Vendor-n/a D-Link Corporation

Product-dcs-932l dcs-932l_firmware n/a

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2021-3790

Matching Score-4

Assigner-Lenovo Group Ltd.

View Details

Matching Score-4

Assigner-Lenovo Group Ltd.

CVSS Score-6.5||MEDIUM

EPSS-0.10% / 27.17%

7 Day CHG~0.00%

Published-12 Nov, 2021 | 22:05

Updated-03 Aug, 2024 | 17:09

A buffer overflow was reported in the local web server of some Motorola-branded Binatone Hubble Cameras that could allow an unauthenticated attacker on the same network to perform a denial-of-service attack against the device.

Vendor-binatoneglobal Motorola Mobility LLC. (Lenovo Group Limited)

CWE ID-CWE-121

Stack-based Buffer Overflow

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2024-12343

Matching Score-4

Assigner-VulDB

View Details

Matching Score-4

Assigner-VulDB

CVSS Score-7.1||HIGH

EPSS-7.85% / 91.80%

7 Day CHG~0.00%

Published-08 Dec, 2024 | 09:31

Updated-10 Dec, 2024 | 23:26

TP-Link VN020 F3v(T) SOAP Request WANIPConnection buffer overflow

A vulnerability classified as critical has been found in TP-Link VN020 F3v(T) TT_V6.2.1021. Affected is an unknown function of the file /control/WANIPConnection of the component SOAP Request Handler. The manipulation of the argument NewConnectionType leads to buffer overflow. The attack needs to be done within the local network. The exploit has been disclosed to the public and may be used.

Vendor-TP-Link Systems Inc.

Product-vn020_f3v vn020_f3v_firmware VN020 F3v(T)

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2020-35224

Matching Score-4

Assigner-MITRE Corporation

View Details

Matching Score-4

Assigner-MITRE Corporation

CVSS Score-6.5||MEDIUM

EPSS-0.67% / 70.93%

7 Day CHG~0.00%

Published-10 Mar, 2021 | 17:58

Updated-04 Aug, 2024 | 17:02

A buffer overflow vulnerability in the NSDP protocol authentication method on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote unauthenticated attackers to force a device reboot.

Vendor-n/a NETGEAR, Inc.

Product-jgs516pe_firmware gs116e_firmware gs116e jgs516pe n/a

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2020-0576

Matching Score-4

Assigner-Intel Corporation

View Details

Matching Score-4

Assigner-Intel Corporation

CVSS Score-6.5||MEDIUM

EPSS-0.35% / 57.05%

7 Day CHG~0.00%

Published-15 Apr, 2020 | 16:58

Updated-04 Aug, 2024 | 06:02

Buffer overflow in Intel(R) Modular Server MFS2600KISPP Compute Module may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Vendor-n/a Intel Corporation

Product-compute_module_mfs2600ki_firmware compute_module_mfs2600ki Intel(R) Modular Server Compute Module

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2025-30422

Matching Score-4

Assigner-Apple Inc.

View Details

Matching Score-4

Assigner-Apple Inc.

CVSS Score-6.5||MEDIUM

EPSS-0.04% / 12.32%

7 Day CHG~0.00%

Published-30 Apr, 2025 | 20:48

Updated-12 May, 2025 | 19:41

A buffer overflow was addressed with improved input validation. This issue is fixed in AirPlay audio SDK 2.7.1, AirPlay video SDK 3.6.0.126, CarPlay Communication Plug-in R18.1. An attacker on the local network may cause an unexpected app termination.

Vendor-Apple Inc.

Product-airplay_video_software_development_kit airplay_audio_software_development_kit carplay_communication_plug-in AirPlay video SDK AirPlay audio SDK CarPlay Communication Plug-in

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2023-34140

Matching Score-4

Assigner-Zyxel Corporation

View Details

Matching Score-4

Assigner-Zyxel Corporation

CVSS Score-6.5||MEDIUM

EPSS-0.10% / 27.21%

7 Day CHG~0.00%

Published-17 Jul, 2023 | 17:49

Updated-21 Oct, 2024 | 19:42

A buffer overflow vulnerability in the Zyxel ATP series firmware versions 4.32 through 5.36 Patch 2, USG FLEX series firmware versions 4.50 through 5.36 Patch 2, USG FLEX 50(W) series firmware versions 4.16 through 5.36 Patch 2, USG20(W)-VPN series firmware versions 4.16 through 5.36 Patch 2, VPN series firmware versions 4.30 through 5.36 Patch 2, NXC2500 firmware versions 6.10(AAIG.0) through 6.10(AAIG.3), and NXC5500 firmware versions 6.10(AAOS.0) through 6.10(AAOS.4), could allow an unauthenticated, LAN-based attacker to cause denial of service (DoS) conditions by sending a crafted request to the CAPWAP daemon.

Vendor-Zyxel Networks Corporation

Product-zywall_vpn_300 zywall_atp700 zywall_atp700_firmware zywall_vpn_50_firmware zywall_atp800 zywall_vpn_50 usg_flex_200 zywall_atp100_firmware usg_flex_500_firmware usg_2200-vpn_firmware usg_flex_100 usg_flex_100w_firmware zywall_vpn300_firmware usg_flex_200_firmware usg_2200-vpn zywall_atp200 zywall_vpn50 nxc5500 zywall_vpn100_firmware nxc2500 zywall_vpn100 usg_flex_700 zywall_atp100w_firmware usg_flex_100w zywall_atp800_firmware usg_flex_50w_firmware zywall_atp200_firmware usg_20w-vpn zywall_atp500 usg_20w-vpn_firmware zywall_atp100 usg_flex_100_firmware nxc5500_firmware zywall_atp100w zywall_atp500_firmware usg_flex_50w nxc2500_firmware usg_flex_50_firmware zywall_vpn300 zywall_vpn_300_firmware usg_flex_700_firmware zywall_vpn_100 zywall_vpn2s zywall_vpn2s_firmware zywall_vpn50_firmware usg_flex_500 usg_flex_50 zywall_vpn_100_firmware USG FLEX 50(W) series firmware NXC5500 firmware ATP series firmware VPN series firmware NXC2500 firmware USG FLEX series firmware USG20(W)-VPN series firmware

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2023-28811

Matching Score-4

Assigner-Hangzhou Hikvision Digital Technology Co., Ltd.

View Details

Matching Score-4

Assigner-Hangzhou Hikvision Digital Technology Co., Ltd.

CVSS Score-7.4||HIGH

EPSS-0.05% / 16.57%

7 Day CHG~0.00%

Published-23 Nov, 2023 | 06:42

Updated-02 Aug, 2024 | 13:51

There is a buffer overflow in the password recovery feature of Hikvision NVR/DVR models. If exploited, an attacker on the same local area network (LAN) could cause the device to malfunction by sending specially crafted packets to an unpatched device.

Vendor-HIKVISION

Product-nvr-108mh-c\/8p\(c\)ds-7604ni-q1\(c\)nvr-116mh-c\(c\)nvr-104mh-d\(c\)_firmware nvr-116mh-c\(c\)_firmware nvr-104mh-d\(d\)nvr-108mh-d\(c\)nvr-208mh-c\(c\)nvr-108h-d\/8p\(c\)_firmware ds-7104ni-q1\(c\)nvr-208mh-c\(c\)_firmware nvr-104mh-c\(d\)ds-7604ni-k1\/4p\/4g\(c\)_firmware nvr-108h-d\(c\)_firmware nvr-104mh-c\(c\)nvr-108mh-c\(d\)nvr-108h-d\/8p\(d\)_firmware ds-7616ni-q2\/16p\(c\)_firmware ds-7608ni-k1\/8p\/4g\(c\)_firmware nvr-108mh-c\(c\)_firmware ds-7616ni-k1\(c\)_firmware ds-7108ni-q1\(c\)_firmware nvr-108mh-d\/8p\(c\)nvr-104mh-c\(c\)_firmware ds-7608ni-q1\/8p\(c\)_firmware ds-7616ni-q2\/16p\(c\)nvr-116mh-c\(d\)ds-7104ni-q1\(d\)nvr-216mh-c\(d\)_firmware ds-7108ni-q1\(c\)ds-7108ni-q1\(d\)_firmware ds-7608ni-k1\/8p\(c\)nvr-116mh-c\(d\)_firmware nvr-104mh-c\(d\)_firmware ds-7616ni-q2\(c\)ds-7608ni-k1\/8p\/4g\(c\)ds-7104ni-q1\(d\)_firmware ds-7604ni-k1\(c\)nvr-108mh-d\/8p\(c\)_firmware nvr-104mh-c\/4p\(d\)ds-7616ni-q2\(c\)_firmware ds-7604ni-q1\(c\)_firmware nvr-216mh-c\/16p\(d\)_firmware nvr-108mh-d\(c\)_firmware nvr-208mh-c\/8p\(d\)nvr-108h-d\/8p\(c\)ds-7604ni-k1\/4p\/4g\(c\)nvr-108mh-c\(d\)_firmware nvr-104mh-d\(d\)_firmware ds-7604ni-q1\/4p\(c\)_firmware nvr-104mh-d\(c\)nvr-108h-d\/8p\(d\)dvr_firmware ds-7104ni-q1\(c\)_firmware ds-7616ni-q1\(c\)ds-7608ni-q1\/8p\(c\)ds-7616ni-k1\(c\)nvr-104mh-c\/4p\(d\)_firmware ds-7616ni-q1\(c\)_firmware nvr-216mh-c\(d\)nvr-108mh-d\(d\)nvr-108mh-c\/8p\(c\)_firmware nvr-108mh-d\(d\)_firmware ds-7604ni-k1\(c\)_firmware ds-7608ni-q1\(c\)ds-7604ni-q1\/4p\(c\)nvr-104mh-d\/4p\(c\)nvr-216mh-c\/16p\(d\)ds-7608ni-q2\(c\)nvr-108h-d\(c\)nvr-208mh-c\/8p\(d\)_firmware nvr-104mh-d\/4p\(c\)_firmware ds-7608ni-q2\(c\)_firmware ds-7608ni-q2\/8p\(c\)ds-7608ni-k1\/8p\(c\)_firmware ds-7108ni-q1\(d\)ds-7608ni-q2\/8p\(c\)_firmware ds-7608ni-q1\(c\)_firmware nvr-108mh-c\(c\)HW-HWD-51XXH(S)HL-NVR-1xxMH-C(C)HW-HWN-42xxMH(D)iDS-EXXHQH HW-HWD-62XXMH-G4 HL-DVR-216Q-K2(E)HW-HWD-51XXH-G DS-77xxNI-I4(B)HW-HWD-61XXMH-G4 DVR-EXXHQH HW-HWN-21xxMH(D)DS-71xxNI-Q1(C)HW-HWN-21xxMH(C)iDS-72XXHQH-M(C)HL-DVR-2XXQ-M(C)HW-HWN-41xxMH(C)iDS-EXXHUH HL-NVR-1xxMH-D(D)HW-HWD-72XXMH-G4 HL-NVR-2xxMH-C(C)HW-HWD-71XXMH-G4 NVR-2xxMH-C(D)DVR-EXXHUH DS-71XXHGH-M(C)iDS-72XXHQH-M(E)iDS-71xxHQH-M(C)iDS-72xxHUH-M/E(C)DS-EXXHGH DS-71XXHGH-K(S)iDS-71xxHUH-M(E)HW-HWD-61XXMH-G4(E)DS-76xxNI-Q1(C)HL-NVR-1xxMH-D(C)HL-DVR-2XXG-K(S)DS-76xxNI-Q2(C)HW-HWN-41xxMH(D)HL-DVR-2XXQ-M(E)HL-DVR-2XXG-M(C)iDS-71xxHQH-M(E)DS-71xxNI-Q1(D)DVR-EXXHGH DS-72XXHGH-M(C)iDS-72xxHQH-M/E(E)iDS-71xxHUH-M(C)DS-76xxNI-K1(C)iDS-72XXHUH-M(E)HW-HWD-51XXMH-G HL-DVR-2XXU-M(E)HL-DVR-2XXU-M(C)HW-HWD-71XXMH-G4(E)HL-DVR-1XXG-K(S)iDS-72XXHUH-M(C)iDS-72xxHUH-M/E(E)NVR-1xxMH-C(D)iDS-72xxHQH-M/E(C)iDS-72XXHTH-M(C)DS-72XXHGH-K(S)HW-HWN-42xxMH(C)HL-DVR-1XXG-M(C)

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2024-39181

Credits

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs