Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formIPMacBindDel with the request /goform/delIpMacBind/
References
Link | Resource |
---|---|
https://github.com/CPSeek/Router-vuls/blob/main/Tenda/W20E/formIPMacBindDel.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
28 Sep 2022, 17:06
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-787 | |
First Time |
Tenda
Tenda w20e Firmware Tenda w20e |
|
CPE | cpe:2.3:o:tenda:w20e_firmware:15.11.0.6:*:*:*:*:*:*:* cpe:2.3:h:tenda:w20e:-:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
References | (MISC) https://github.com/CPSeek/Router-vuls/blob/main/Tenda/W20E/formIPMacBindDel.md - Exploit, Third Party Advisory |
23 Sep 2022, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-09-23 15:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-40867
Mitre link : CVE-2022-40867
CVE.ORG link : CVE-2022-40867
JSON object : View
Products Affected
tenda
- w20e_firmware
- w20e
CWE
CWE-787
Out-of-bounds Write