Vulnerabilities > CVE-2022-45504 - Unspecified vulnerability in Tenda W6-S Firmware 1.0.0.4(510)

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

tenda

NVD

Published: 2022-12-08

Updated: 2022-12-10

Summary

An issue in the component tpi_systool_handle(0) (/goform/SysToolRestoreSet) of Tenda W6-S v1.0.0.4(510) allows unauthenticated attackers to arbitrarily reboot the device.

Vulnerable Configurations

Part	Description	Count
OS	Tenda Tenda W6 S Firmware 1.0.0.4\(510\)	1
Hardware	Tenda Tenda W6 S -	1

References

https://github.com/z1r00/IOT_Vul/blob/main/Tenda/W6-S/SysToolRestoreSet/readme.md