Vulnerabilities > CVE-2024-12344 - Out-of-bounds Write vulnerability in Tp-Link Vn020 F3V Firmware 6.2.1021

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

tp-link

CWE-787

critical

NVD

Published: 2024-12-08

Updated: 2024-12-10

Summary

A vulnerability, which was classified as critical, was found in TP-Link VN020 F3v(T) TT_V6.2.1021. This affects an unknown part of the component FTP USER Command Handler. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Vulnerable Configurations

Part	Description	Count
OS	Tp-Link TP Link Vn020 F3V Firmware 6.2.1021	1
Hardware	Tp-Link TP Link Vn020 F3V -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/Zephkek/TP-1450
https://vuldb.com/?ctiid.287265
https://vuldb.com/?id.287265
https://vuldb.com/?submit.452658
https://www.tp-link.com/