CVE-2024-6142

Actiontec WCB6200Q uh_tcp_recv_content Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HTTP server. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length buffer. An attacker can leverage this vulnerability to execute code in the context of the HTTP server. Was ZDI-CAN-21410.

CVSS v3.0 8.8 HIGH

8.8^/10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.zerodayinitiative.com/advisories/ZDI-24-805/	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:actiontec:wcb6200q_firmware:1.2l.03.5:*:*:*:*:*:*:*

cpe:2.3:h:actiontec:wcb6200q:-:*:*:*:*:*:*:*

History

19 Sep 2024, 17:47

Type	Values Removed	Values Added
References	~~() https://www.zerodayinitiative.com/advisories/ZDI-24-805/ -~~	() https://www.zerodayinitiative.com/advisories/ZDI-24-805/ - Third Party Advisory, VDB Entry
First Time		Actiontec wcb6200q Firmware Actiontec wcb6200q Actiontec
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.8
CWE		CWE-120
CPE		cpe:2.3:o:actiontec:wcb6200q_firmware:1.2l.03.5:::::::* cpe:2.3:h:actiontec:wcb6200q:-:::::::*

19 Jun 2024, 00:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-06-19 00:15

Updated : 2024-09-19 17:47

NVD link : CVE-2024-6142

Mitre link : CVE-2024-6142

JSON object : View

Products Affected

actiontec

wcb6200q
wcb6200q_firmware

CWE

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

8.8 /10