{"uuid": "0fd8448c-a243-4f32-8021-ba16a4bc0326", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2488", "type": "published-proof-of-concept", "source": "https://t.me/arpsyndicate/4252", "content": "#ExploitObserverAlert\n\nCVE-2024-2488\n\nDESCRIPTION: Exploit Observer has 28 entries in 4 file formats related to CVE-2024-2488. A vulnerability was found in Tenda AC18 15.03.05.05. It has been rated as critical. This issue affects the function formSetPPTPServer of the file /goform/SetPptpServerCfg. The manipulation of the argument startIP leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-256895. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.", "creation_timestamp": "2024-03-16T20:50:42.000000Z"}