Buffer Overflow Vulnerability in Tenda M3 by Tenda
CVE-2022-38571

7.5HIGH

Key Information:

Vendor
Tenda
Status
M3 Firmware
Vendor
CVE Published:
28 August 2022

Summary

The Tenda M3 device has a vulnerability identified as a buffer overflow in the function formSetGuideListItem. This flaw can potentially allow an attacker to execute arbitrary code and gain unauthorized access, leading to significant security risks for users of the affected version.

References

https://github.com/xxy1126/Vuln/tree/main/Tenda%20M3/form...
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.