Buffer Overflow Vulnerability in Tenda i22 by Tenda
CVE-2022-45669

7.5HIGH

Key Information:

Vendor

Tenda
Status
I22 Firmware
Vendor
CVE Published:
2 December 2022

What is CVE-2022-45669?

A buffer overflow vulnerability exists in the Tenda i22 device, specifically within the formWifiMacFilterGet function that utilizes the index parameter. An attacker could exploit this vulnerability to execute arbitrary code by sending crafted requests, potentially compromising the device and the network it operates on.

References

https://github.com/ConfusedChenSir/VulnerabilityProjectRe...

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2022-45669 : Buffer Overflow Vulnerability in Tenda i22 by Tenda