Tenda Router CVE-2024-2986: IoT Firmware Stack Overflow and ARM ROP Exploitation
Posted on 2026-03-17
A simple IoT firmware pwn against ARMv7 stack overflow
A simple IoT firmware pwn against ARMv7 stack overflow
Fonttools to file write, FontForge to RCE, setuptools to path traversal
Cams on ZoneMinder (CVE-2024-51482) & MotionEye (CVE-2025-60787)
There is no excerpt because this is a protected post.
Mirth CVE-2023-43208 RCE to root via Python f-string injection
WingFTP RCE (CVE-2025-47812), Python tarfile overflow (CVE-2025-4517)
Php lfi2rce (CVE-2025-49132), udisks fs privesc (CVE-2025-601[8|9])
Wifi pivot game: capture deauthed hankshakes & Eaphammer theft