CVE-2022-47116
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the SYSPS parameter at /goform/SysToolChangePwd.
Affected (1)
Products: Tenda: A15 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 15.13.07.13 |
| Running on/with | Platform Versions |
|---|---|
Tenda A15 | All versions |
References (2)
https://brief-nymphea-813.notion.site/Vul1-A15-bof-SysToolChangePwd-6a66d9f7a7e748deb8ebed544931bd29
Source: cve@mitre.org
ExploitThird Party Advisory
https://brief-nymphea-813.notion.site/Vul1-A15-bof-SysToolChangePwd-6a66d9f7a7e748deb8ebed544931bd29
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory
Timeline
No history available yet.