Описание
An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in /goform/setportList allows attackers to execute arbitrary code on the system via a crafted post request.
Ссылки
- ExploitIssue TrackingThird Party Advisory
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 02.03.01.104_cn (включая)
Одновременно
cpe:2.3:o:tenda:ac11_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:tenda:ac11:-:*:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.40111
Средний
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-787
Связанные уязвимости
github
больше 3 лет назад
An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in /goform/setportList allows attackers to execute arbitrary code on the system via a crafted post request.
EPSS
Процентиль: 97%
0.40111
Средний
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-787