Vulnerabilities > CVE-2022-37292 - Out-of-bounds Write vulnerability in Tenda Ax12 Firmware 22.03.01.21Cn

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
tenda
CWE-787

Summary

Tenda AX12 V22.03.01.21_CN is vulnerable to Buffer Overflow. This overflow is triggered in the sub_42FDE4 function, which satisfies the request of the upper-level interface function sub_430124, that is, handles the post request under /goform/SetIpMacBind.

Vulnerable Configurations

Part Description Count
OS
Tenda
1
Hardware
Tenda
1

Common Weakness Enumeration (CWE)