CVE-2022-45646

Name of the Vulnerable Software and Affected Versions Tenda AC6V1.0 version 15.03.05.19

Description A buffer overflow issue was discovered via the limitSpeedUp parameter in the formSetClientState function. This issue allows for potential exploitation. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For Tenda AC6V1.0 version 15.03.05.19, as a temporary workaround, consider restricting access to the formSetClientState function until a patch is available. Avoid using the limitSpeedUp parameter in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.