Description

Tenda F1202 V1.2.0.9, PA202 V1.1.2.5, PW201A V1.1.2.5 and FH1202 V1.2.0.9 were discovered to contain a stack overflow via the page parameter at /L7Im.

Related CPE's

o

tenda

f1202_firmware

1.2.0.9

Vulnerable

h

tenda

f1202

-

o

tenda

pa202_firmware

1.1.2.5

Vulnerable

h

tenda

pa202

-

o

tenda

pw201a_firmware

1.1.2.5

Vulnerable

h

tenda

pw201a

-

o

tenda

fh1202_firmware

1.2.0.9

Vulnerable

h

tenda

fh1202

-

References

https://github.com/FirmRec/IoT-Vulns/tree/main/tenda/frmL7ImForm

ExploitThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-787

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2023-08-07T19:15:11.477

1 year ago

Last modified

2023-08-09T18:06:15.870

1 year ago