CVE-2022-32384

Tenda AC23 v16.03.07.44 was discovered to contain a stack overflow via the security_5g parameter in the function formWifiBasicSet.
References
Link Resource
http://ac23.com Not Applicable
http://tenda.com Not Applicable
https://drive.google.com/file/d/16hshiCHS8j3YaFPkQD3xajVuwu_QVBe3/view?usp=sharing Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:tendacn:ac23_ac2100_firmware:16.03.07.44:*:*:*:*:*:*:*
cpe:2.3:h:tendacn:ac23_ac2100:-:*:*:*:*:*:*:*

History

13 Jul 2022, 19:06

Type Values Removed Values Added
References (MISC) http://tenda.com - (MISC) http://tenda.com - Not Applicable
References (MISC) http://ac23.com - (MISC) http://ac23.com - Not Applicable
References (MISC) https://drive.google.com/file/d/16hshiCHS8j3YaFPkQD3xajVuwu_QVBe3/view?usp=sharing - (MISC) https://drive.google.com/file/d/16hshiCHS8j3YaFPkQD3xajVuwu_QVBe3/view?usp=sharing - Exploit, Third Party Advisory
CVSS v2 : unknown
v3 : unknown
v2 : 5.8
v3 : 8.8
CWE CWE-787
First Time Tendacn ac23 Ac2100 Firmware
Tendacn
Tendacn ac23 Ac2100
CPE cpe:2.3:o:tendacn:ac23_ac2100_firmware:16.03.07.44:*:*:*:*:*:*:*
cpe:2.3:h:tendacn:ac23_ac2100:-:*:*:*:*:*:*:*

01 Jul 2022, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-07-01 21:15

Updated : 2023-12-10 14:35


NVD link : CVE-2022-32384

Mitre link : CVE-2022-32384

CVE.ORG link : CVE-2022-32384


JSON object : View

Products Affected

tendacn

  • ac23_ac2100
  • ac23_ac2100_firmware
CWE
CWE-787

Out-of-bounds Write