Описание
Buffer Overflow vulnerability in Tenda AC6 v.15.03.05.16 allows a remote attacker to cause a denial of service via the oversized schedStartTime and schedEndTime parameters in an unauthenticated HTTP GET request to the /goform/openSchedWifi endpoint
Ссылки
- Not Applicable
- Product
- https://github.com/XiDP0/MyCVE/blob/main/CVE/Tenda%20AC6%20V15.03.05.16/setSchedWifi/setSchedWifi.mdExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:tenda:ac6_firmware:15.03.05.16:*:*:*:*:*:*:*
cpe:2.3:h:tenda:ac6:-:*:*:*:*:*:*:*
EPSS
Процентиль: 24%
0.00082
Низкий
7.5 High
CVSS3
Дефекты
CWE-120
Связанные уязвимости
CVSS3: 7.5
github
8 месяцев назад
Buffer Overflow vulnerability in Tenda AC6 v.15.03.05.16 allows a remote attacker to cause a denial of service via the oversized schedStartTime and schedEndTime parameters in an unauthenticated HTTP GET request to the /goform/openSchedWifi endpoint
EPSS
Процентиль: 24%
0.00082
Низкий
7.5 High
CVSS3
Дефекты
CWE-120