Buffer Overflow Vulnerability in Tenda F1203 by Tenda
CVE-2022-46536

7.5HIGH

Key Information:

Vendor: Tenda
Status: F1203 Firmware
Vendor: CVE Published:; 20 December 2022

What is CVE-2022-46536?

A buffer overflow vulnerability has been identified in the Tenda F1203 router, specifically through the 'limitSpeedUp' parameter at '/goform/SetClientState'. This flaw may allow attackers to exploit memory regions, potentially disrupting network services or executing arbitrary code. Users of Tenda F1203 V2.0.1.6 should take appropriate measures to mitigate the risks associated with this vulnerability.

References

https://github.com/Double-q1015/CVE-vulns/blob/main/tenda...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 20, 2022
Vulnerability Reserved
Dec 5, 2022