CVE-2024-54809

Netgear Inc WNR854T 1.5.2 (North America) contains a stack-based buffer overflow vulnerability in the parse_st_header function due to use of a request header parameter in a strncpy where size is determined based on the input specified. By sending a specially crafted packet, an attacker can take control of the program counter and hijack control flow of the program to execute arbitrary system commands.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://faultpoint.com/post/2025-03-25-8-cves-on-the-wnr854t-junkyard/#809	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:netgear:wnr854t_firmware:1.5.2:*:*:*:*:*:*:*

cpe:2.3:h:netgear:wnr854t:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2025-03-31 21:15

Updated : 2025-04-17 12:54

NVD link : CVE-2024-54809

Mitre link : CVE-2024-54809

CVE.ORG link : CVE-2024-54809

JSON object : View

Products Affected

netgear

wnr854t
wnr854t_firmware

CWE

CWE-121

Stack-based Buffer Overflow

{"id": "CVE-2024-54809", "cveTags": [{"tags": ["unsupported-when-assigned"], "sourceIdentifier": "[email protected]"}], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2025-03-31T21:15:48.527", "references": [{"url": "https://faultpoint.com/post/2025-03-25-8-cves-on-the-wnr854t-junkyard/#809", "tags": ["Exploit", "Third Party Advisory"], "source": "[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-121"}]}], "descriptions": [{"lang": "en", "value": "Netgear Inc WNR854T 1.5.2 (North America) contains a stack-based buffer overflow vulnerability in the parse_st_header function due to use of a request header parameter in a strncpy where size is determined based on the input specified. By sending a specially crafted packet, an attacker can take control of the program counter and hijack control flow of the program to execute arbitrary system commands."}, {"lang": "es", "value": "Netgear Inc WNR854T 1.5.2 (Norteam\u00e9rica) presenta una vulnerabilidad de desbordamiento de b\u00fafer en la funci\u00f3n parse_st_header debido al uso de un par\u00e1metro de encabezado de solicitud en un strncpy donde el tama\u00f1o se determina en funci\u00f3n de la entrada especificada. Al enviar un paquete especialmente manipulado, un atacante puede tomar el control del contador del programa y secuestrar el flujo de control del programa para ejecutar comandos arbitrarios del sistema."}], "lastModified": "2025-04-17T12:54:59.290", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:wnr854t_firmware:1.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "04160B4A-2291-4BA4-8438-7269576CE238"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:wnr854t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DE71A95C-8A0E-4939-BAD7-B06DBA21961E"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "[email protected]"}