Lucene search

MitreCVE-2022-45510

HistoryDec 08, 2022 - 4:15 p.m.

CVE-2022-45510

2022-12-0816:15:14

CWE-787

mitre

web.nvd.nist.gov

cve-2022-45510

tenda w30e

v1.0.1.25

stack overflow

mit_ssid_index

nvd

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

46.0%

JSON

Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the mit_ssid_index parameter at /goform/AdvSetWrlsafeset.

Affected configurations

Nvd

Node

tendaw30e_firmwareMatch1.0.1.25\(633\)

AND

tendaw30eMatch-

VendorProductVersionCPE
tendaw30e_firmware1.0.1.25(633)cpe:2.3:o:tenda:w30e_firmware:1.0.1.25\(633\):*:*:*:*:*:*:*
tendaw30e-cpe:2.3:h:tenda:w30e:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tenda	w30e_firmware	1.0.1.25(633)	cpe:2.3:o:tenda:w30e_firmware:1.0.1.25\(633\):::::::*
tenda	w30e	-	cpe:2.3:h:tenda:w30e:-:::::::*

References

github.com/z1r00/IOT_Vul/blob/main/Tenda/W30E/AdvSetWrlsafeset/readme.md

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

46.0%

JSON

Related for CVE-2022-45510