PT-2022-23269 · Tenda · Tenda Ac9
Amalll
·
Published
2022-08-19
·
Updated
2022-08-21
·
CVE-2022-36233
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Tenda AC9 version 15.03.2.13
Description
The issue is related to a Buffer Overflow via httpd, specifically in the form fast setting wifi set function. This affects the httpd service.
Recommendations
For Tenda AC9 version 15.03.2.13, consider disabling the httpd service or restricting access to the form fast setting wifi set function until a patch is available. Avoid using the
form fast setting wifi set function in the affected httpd endpoint until the issue is resolved.Exploit
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tenda Ac9