Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function formGetIptv.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Tue, 27 Aug 2024 14:45:00 +0000

Type Values Removed Values Added
First Time appeared Tenda ax1806
Weaknesses CWE-787
CPEs cpe:2.3:h:tenda:ax1806:-:*:*:*:*:*:*:*
cpe:2.3:o:tenda:ax1806_firmware:1.0.0.1:*:*:*:*:*:*:*
Vendors & Products Tenda ax1806

Mon, 26 Aug 2024 17:30:00 +0000

Type Values Removed Values Added
First Time appeared Tenda
Tenda ax1806 Firmware
Weaknesses CWE-121
CPEs cpe:2.3:o:tenda:ax1806_firmware:*:*:*:*:*:*:*:*
Vendors & Products Tenda
Tenda ax1806 Firmware
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 26 Aug 2024 15:45:00 +0000

Type Values Removed Values Added
Description Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function formGetIptv.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-26T16:57:05.218Z

Reserved: 2024-08-21T00:00:00

Link: CVE-2024-44550

cve-icon Vulnrichment

Updated: 2024-08-26T16:56:16.946Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-26T16:15:10.387

Modified: 2024-08-27T14:29:02.370

Link: CVE-2024-44550

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.