Lucene search

[email protected]CVE-2022-42058

HistoryNov 15, 2022 - 3:15 a.m.

CVE-2022-42058

2022-11-1503:15:15

CWE-787

[email protected]

web.nvd.nist.gov

cve-2022-42058

tenda

router

ac1200

w15ev2

v15.11.0.10

stack overflow

dos

vulnerability

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

61.6%

JSON

Tenda AC1200 Router Model W15Ev2 V15.11.0.10(1576) was discovered to contain a stack overflow via the setRemoteWebManage function. This vulnerability allows attackers to cause a Denial of Service (DoS) via crafted overflow data.

Affected configurations

NVD

Node

tendaw15e_firmwareMatch15.11.0.10\(1576\)

AND

tendaw15eMatch2.0

CPENameOperatorVersion
tenda:w15e_firmwaretenda w15e firmwareeq15.11.0.10\(1576\)

CPE	Name	Operator	Version
tenda:w15e_firmware	tenda w15e firmware	eq	15.11.0.10\(1576\)

References

boschko.ca/tenda_ac1200_router

boschko.ca/tenda_ac1200_router/

Social References

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

61.6%

JSON

Related for CVE-2022-42058

nvd1 prion1 cnvd1 cvelist1