Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-75822
HistoryAug 23, 2022 - 12:00 a.m.

Tenda AC9 Buffer Overflow Vulnerability (CNVD-2022-75822)

2022-08-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
10

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

25.6%

Tenda AC9 is a wireless router from Tenda, China. Tenda AC9 V15.03.2.13 is vulnerable to a buffer overflow vulnerability caused by a stack buffer overflow in form_fast_setting_wifi_set in the httpd server. An authenticated local attacker can exploit this vulnerability to cause a denial of service.

CPENameOperatorVersion
tenda tenda ac9 v15.eq03.2.13

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

25.6%

Related for CNVD-2022-75822