CVE-2024-7439 | Vivotek CC8160 VVTK-0100d httpd read Content-Length stack-based overflow
A vulnerability was found in Vivotek CC8160 VVTK-0100d and classified as critical. Affected by this issue is the function read of the component httpd. The manipulation of the argument Content-Length leads to stack-based buffer overflow. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
This vulnerability is handled as CVE-2024-7439. The attack may be launched remotely. Furthermore, there is an exploit available.
Vendor was contacted early and confirmed that the affected release tree is end-of-life.
It is recommended to apply restrictive firewalling.