PT-2022-24100 · Tenda · Tenda Ax1803

Published

2022-08-25

·

Updated

2022-08-27

·

CVE-2022-37821

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Tenda AX1803 version 1.0.0.1
Description A stack overflow issue was discovered, related to the ProvinceCode parameter in the formSetProvince function.
Recommendations For Tenda AX1803 version 1.0.0.1, avoid using the ProvinceCode parameter in the affected function until the issue is resolved.

Exploit

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2022-37821

Affected Products

Tenda Ax1803