Stack Overflow Vulnerability in Tenda A15 Router
CVE-2022-47122

9.8CRITICAL

Key Information:

Vendor
Tenda
Vendor
CVE Published:
30 December 2022

Summary

The Tenda A15 Router version V15.13.07.13 is susceptible to a stack overflow vulnerability located in the wrlPwd_5g parameter at the /goform/WifiBasicSet endpoint. This security flaw allows an attacker to execute arbitrary code or potentially crash the device, posing a risk to network integrity and user data. Mitigating this issue is critical for users to protect against unauthorized access and exploitation.

References

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.