Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the timeZone parameter in the fromSetSysTime function.
References
Link | Resource |
---|---|
https://github.com/ppcrab/IOT_FIRMWARE/blob/main/Tenda/ac23/ac23.md#fromsetsystimesub_496104strcpychar-v6-s | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
03 Nov 2022, 17:20
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-787 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CPE | cpe:2.3:o:tenda:ac23_firmware:16.03.07.45_cn:*:*:*:*:*:*:* cpe:2.3:h:tenda:ac23:-:*:*:*:*:*:*:* |
|
References | (MISC) https://github.com/ppcrab/IOT_FIRMWARE/blob/main/Tenda/ac23/ac23.md#fromsetsystimesub_496104strcpychar-v6-s - Exploit, Third Party Advisory | |
First Time |
Tenda ac23 Firmware
Tenda Tenda ac23 |
03 Nov 2022, 14:34
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-03 14:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-43102
Mitre link : CVE-2022-43102
CVE.ORG link : CVE-2022-43102
JSON object : View
Products Affected
tenda
- ac23_firmware
- ac23
CWE
CWE-787
Out-of-bounds Write