// For flags

CVE-2024-52275

Denial of Service on Tenda AC6V2 Due To Stack Overflow

Severity Score

8.3
*CVSS v4

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Track
*SSVC
Descriptions

Stack-based Buffer Overflow vulnerability in Shenzhen Tenda Technology Co Tenda AC6V2 (fromWizardHandle modules) allows Overflow Buffers.This issue affects Tenda AC6V2: through 15.03.06.50.

Vulnerabilidad de desbordamiento de búfer en la región stack de la memoria en Shenzhen Tenda Technology Co Tenda AC6V2 (desde los módulos WizardHandle) permite desbordamientos de búfer. Este problema afecta a Tenda AC6V2: hasta el 15.03.06.50.

*Credits: Ba1100n
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Attack Requirements
None
Privileges Required
Low
User Interaction
None
System
Vulnerable | Subsequent
Confidentiality
None
None
Integrity
None
None
Availability
High
High
* Common Vulnerability Scoring System
SSVC
  • Decision:Track
Exploitation
None
Automatable
No
Tech. Impact
Partial
* Organization's Worst-case Scenario
Timeline
  • 2024-11-06 CVE Reserved
  • 2024-12-04 CVE Published
  • 2024-12-04 CVE Updated
  • 2024-12-04 First Exploit
  • 2024-12-05 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-121: Stack-based Buffer Overflow
CAPEC
  • CAPEC-100: Overflow Buffers
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Shenzhen Tenda Technology Co
Search vendor "Shenzhen Tenda Technology Co"
 Tenda AC6V2
Search vendor "Shenzhen Tenda Technology Co" for product "Tenda AC6V2"
 <= 15.03.06.50
Search vendor "Shenzhen Tenda Technology Co" for product "Tenda AC6V2" and version " <= 15.03.06.50"
en
Affected