Buffer Overflow in Tenda i22 Router Firmware
CVE-2022-45663

7.5HIGH

Key Information:

Vendor: Tenda
Status: I22 Firmware
Vendor: CVE Published:; 2 December 2022

What is CVE-2022-45663?

The Tenda i22 router contains a security weakness that allows for a buffer overflow via the index parameter in the formWifiMacFilterSet function. This vulnerability may be exploited to disrupt the normal functioning of the device or execute arbitrary code, posing potential risks to connected networks and devices. Users are urged to take protective measures and apply any available updates promptly.

References

https://github.com/Double-q1015/CVE-vulns/blob/main/tenda...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 2, 2022
Vulnerability Reserved
Nov 21, 2022