10
CVE-2022-25431
- EPSS 1.67%
- Veröffentlicht 18.03.2022 21:15:08
- Zuletzt bearbeitet 21.11.2024 06:52:10
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginTenda AC9 v15.03.2.21 was discovered to contain multiple stack overflows via the NPTR, V12, V10 and V11 parameter in the Formsetqosband function.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Tenda ≫ Ac9 Firmware Version15.03.2.21
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.67% | 0.737 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
https://github.com/EPhaha/IOT_vuln/tree/main/Tenda/AC9/4