Lucene search

[email protected]CVE-2022-43026

HistoryOct 19, 2022 - 7:15 p.m.

CVE-2022-43026

2022-10-1919:15:10

CWE-787

[email protected]

web.nvd.nist.gov

tenda

tx3

stack overflow

cve-2022-43026

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

61.2%

JSON

Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the endIp parameter at /goform/SetPptpServerCfg.

Affected configurations

NVD

Node

tendatx3_firmwareMatch16.03.13.11

AND

tendatx3Match-

CPENameOperatorVersion
tenda:tx3_firmwaretenda tx3 firmwareeq16.03.13.11

CPE	Name	Operator	Version
tenda:tx3_firmware	tenda tx3 firmware	eq	16.03.13.11

References

github.com/tianhui999/myCVE/blob/main/TX3/TX3-2.md

Social References

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

61.2%

JSON

Related for CVE-2022-43026

prion1 cvelist1 cnvd1 nvd1