Tenda AC6(AC1200) v5.0 Firmware v02.03.01.114 and below contains a vulnerability which allows attackers to remove the Wi-Fi password and force the device into open security mode via a crafted packet sent to goform/setWizard.
References
Link | Resource |
---|---|
http://ac6ac1200.com | Permissions Required Vendor Advisory URL Repurposed |
http://tenda.com | Not Applicable |
https://drive.google.com/drive/folders/1L6ojSooP8sbZLQYRsAxlb0IWVAZef8Z7?usp=sharing | Permissions Required Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
14 Feb 2024, 01:17
Type | Values Removed | Values Added |
---|---|---|
References | () http://ac6ac1200.com - Permissions Required, Vendor Advisory, URL Repurposed |
08 Aug 2023, 14:22
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-noinfo |
06 Sep 2022, 18:38
Type | Values Removed | Values Added |
---|---|---|
First Time |
Tendacn
Tendacn ac6 Firmware Tendacn ac6 |
|
CPE | cpe:2.3:h:tendacn:ac6:5.0:*:*:*:*:*:*:* cpe:2.3:o:tendacn:ac6_firmware:*:*:*:*:*:*:*:* |
|
CWE | CWE-863 | |
References | (MISC) http://ac6ac1200.com - Permissions Required, Vendor Advisory | |
References | (MISC) http://tenda.com - Not Applicable | |
References | (MISC) https://drive.google.com/drive/folders/1L6ojSooP8sbZLQYRsAxlb0IWVAZef8Z7?usp=sharing - Permissions Required, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
30 Aug 2022, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-08-30 16:15
Updated : 2024-02-14 01:17
NVD link : CVE-2022-37176
Mitre link : CVE-2022-37176
CVE.ORG link : CVE-2022-37176
JSON object : View
Products Affected
tendacn
- ac6_firmware
- ac6
CWE