Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2020-13392
HistoryMay 22, 2020 - 4:06 p.m.

CVE-2020-13392

2020-05-2216:06:47
mitre
www.cve.org
5

AI Score

9.7

Confidence

High

EPSS

0.007

Percentile

80.6%

JSON

An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318)_CN devices. There is a buffer overflow vulnerability in the router’s web server – httpd. While processing the /goform/setcfm funcpara1 parameter for a POST request, a value is directly used in a sprintf to a local variable placed on the stack, which overwrites the return address of a function. An attacker can construct a payload to carry out arbitrary code execution attacks.

Related

prion 1
cve 1
nvd 1
checkpoint_advisories 1
prion
prion
Buffer overflow
2020-05-22 17:15:00
cve
cve
CVE-2020-13392
2020-05-22 17:15:11
nvd
nvd
CVE-2020-13392
2020-05-22 17:15:11
checkpoint_advisories
checkpoint_advisories
Tenda Buffer Overflow (CVE-2020-13389; CVE-2020-13390; CVE-2020-13391; CVE-2020-13392; CVE-2020-13393)
2020-06-21 00:00:00

AI Score

9.7

Confidence

High

EPSS

0.007

Percentile

80.6%

JSON
Related for CVELIST:CVE-2020-13392
prion1cve1nvd1checkpoint_advisories1