Vulnerabilities > CVE-2022-40105 - Out-of-bounds Write vulnerability in Tenda I9 Firmware 1.0.0.8(3828)

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

tenda

CWE-787

NVD

Published: 2022-09-23

Updated: 2022-09-27

Summary

Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formWifiMacFilterGet function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

Vulnerable Configurations

Part	Description	Count
OS	Tenda Tenda I9 Firmware 1.0.0.8\(3828\)	1
Hardware	Tenda Tenda I9 -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/splashsc/IOT_Vulnerability_Discovery/blob/main/Tenda/Tenda_i9/buffer_overflow_formWifiMacFilterGet.md