Tenda AX3 v16.03.12.10_CN and AX12 22.03.01.2_CN was discovered to contain a stack overflow in the function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS) via the timeZone parameter.
References
Link | Resource |
---|---|
https://github.com/pjqwudi/my_vuln/blob/main/Tenda/vuln_17/17.md | Broken Link Exploit Third Party Advisory |
Configurations
History
01 Mar 2022, 15:41
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:tenda:ax12:-:*:*:*:*:*:*:* cpe:2.3:o:tenda:ax12_firmware:22.03.01.2_cn:*:*:*:*:*:*:* |
09 Feb 2022, 21:15
Type | Values Removed | Values Added |
---|---|---|
Summary | Tenda AX3 v16.03.12.10_CN and AX12 22.03.01.2_CN was discovered to contain a stack overflow in the function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS) via the timeZone parameter. |
07 Feb 2022, 17:35
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://github.com/pjqwudi/my_vuln/blob/main/Tenda/vuln_17/17.md - Broken Link, Exploit, Third Party Advisory | |
CWE | CWE-787 | |
CVSS |
v2 : v3 : |
v2 : 7.8
v3 : 7.5 |
CPE | cpe:2.3:o:tenda:ax3_firmware:16.03.12.10_cn:*:*:*:*:*:*:* cpe:2.3:h:tenda:ax3:-:*:*:*:*:*:*:* |
04 Feb 2022, 02:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-02-04 02:15
Updated : 2024-02-04 22:08
NVD link : CVE-2022-24143
Mitre link : CVE-2022-24143
CVE.ORG link : CVE-2022-24143
JSON object : View
Products Affected
tenda
- ax3_firmware
- ax12
- ax3
- ax12_firmware
CWE
CWE-787
Out-of-bounds Write