CVE-2024-24292

Critical CVSS: 9.8

A Prototype Pollution issue in Aliconnect /sdk v.0.0.6 allows an attacker to execute arbitrary code via the aim function in the aim.js component.

Vendor

Product

CWE

Yayın Tarihi

2025-03-28 21:15:15

Güncelleme

2025-04-17 13:56:10

Source Identifier

cve@mitre.org

KEV Date Added

CWE-1321 Software Development Kit CRITICAL Aliconnect 2025

https://gist.github.com/tariqhawis/a8b2c936622c885558173c37df0a77d9 https://gist.github.com/tariqhawis/a8b2c936622c885558173c37df0a77d9

High

CVE-2026-20430

In wlan AP FW, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (prox…

High

CVE-2026-20408

In wlan, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote (proximal/adja…

Medium

CVE-2025-20748

In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local es…

High

CVE-2025-20742

In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (…

Medium

CVE-2025-20740

In wlan STA driver, there is a possible out of bounds read due to a race condition. This could lead to local information…

Medium

CVE-2025-20741

In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local es…