PT-2024-28836 · Tenda · Tenda Ax12
Published
2024-07-10
·
Updated
2025-07-07
·
CVE-2024-40412
CVSS v3.1
6.8
Medium
| Vector | AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H |
Name of the Vulnerable Software and Affected Versions
Tenda AX12 version 1.0 v22.03.01.46
Description
The issue is a stack overflow in the
deviceList parameter of the sub 42E410 function.Recommendations
For Tenda AX12 version 1.0 v22.03.01.46, consider disabling the
sub 42E410 function or restricting the use of the deviceList parameter until a patch is available.Fix
Stack Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tenda Ax12