Описание
Vulnerability in Tenda AC8v4 .V16.03.34.09 due to sscanf and the last digit of s8 being overwritten with \x0. After executing set_client_qos, control over the gp register can be obtained.
Ссылки
- Not Applicable
- Exploit
- Not Applicable
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:tenda:ac8_firmware:16.03.34.09:*:*:*:*:*:*:*
cpe:2.3:h:tenda:ac8v4:-:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.0044
Низкий
9.8 Critical
CVSS3
6.3 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-787
Связанные уязвимости
CVSS3: 6.3
github
больше 1 года назад
Vulnerability in Tenda AC8v4 .V16.03.34.09 due to sscanf and the last digit of s8 being overwritten with \x0. After executing set_client_qos, control over the gp register can be obtained.
EPSS
Процентиль: 63%
0.0044
Низкий
9.8 Critical
CVSS3
6.3 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-787