Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function fromDhcpListClient with a combined parameter "list*" ("%s%d","list").
References
Link | Resource |
---|---|
https://github.com/CPSeek/Router-vuls/blob/main/Tenda/AC18/fromDhcpListClient-list.md | Exploit Third Party Advisory |
https://github.com/CPSeek/Router-vuls/blob/main/Tenda/AC15/fromDhcpListClient-list.md | Exploit Third Party Advisory |
Information
Published : 2022-09-23 07:15
Updated : 2022-09-23 13:17
NVD link : CVE-2022-40869
Mitre link : CVE-2022-40869
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
tendacn
- ac18
- ac18_firmware
- ac15
- ac15_firmware