← back
CVE-2024-12344

TP-Link VN020 F3v(T) FTP USER Command memory corruption

CVSS 5.3 MEDIUMEPSS 1.8%CWE-119
A vulnerability, which was classified as critical, was found in TP-Link VN020 F3v(T) TT_V6.2.1021. This affects an unknown part of the component FTP USER Command Handler. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
Affected products
TP-Link · VN020 F3v(T)
public PoCs found2
cve_referencegithub.com/Zephkek/TP-1450unverifiedexploitdbwww.exploit-db.com/exploits/52249unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/Zephkek/TP-1450https://vuldb.com/?ctiid.287265https://vuldb.com/?id.287265https://vuldb.com/?submit.452658https://www.tp-link.com/