CVE-2022-28556
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin is vulnerable to Buffer Overflow. The stack overflow vulnerability lies in the /goform/setpptpservercfg interface of the web. The sent post data startip and endip are copied to the stack using the sanf function, resulting in stack overflow. Similarly, this vulnerability can be used together with CVE-2021-44971
Tenda AC15 versión US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin, es vulnerable a un desbordamiento del búfer. La vulnerabilidad de desbordamiento de pila se encuentra en la interfaz /goform/setpptpservercfg de la web. Los datos post enviados startip y endip son copiados a la pila usando la función sanf, resultando en un desbordamiento de pila. Del mismo modo, esta vulnerabilidad puede usarse junto con CVE-2021-44971
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-04-04 CVE Reserved
- 2022-05-04 CVE Published
- 2023-11-25 EPSS Updated
- 2024-08-03 CVE Updated
- 2024-08-03 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-787: Out-of-bounds Write
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/doudoudedi/TendaAC15_vul/blob/main/TendaAC15-vul.md | 2024-08-03 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Tenda Search vendor "Tenda" | Ac15 Firmware Search vendor "Tenda" for product "Ac15 Firmware" | 15.03.05.20_multi_tde01 Search vendor "Tenda" for product "Ac15 Firmware" and version "15.03.05.20_multi_tde01" | - |
Affected
| in | Tenda Search vendor "Tenda" | Ac15 Search vendor "Tenda" for product "Ac15" | 1.0 Search vendor "Tenda" for product "Ac15" and version "1.0" | - |
Safe
|