Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function formGetIptv.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Tue, 27 Aug 2024 14:45:00 +0000

Type Values Removed Values Added
First Time appeared Tenda ax1806
Weaknesses CWE-787
CPEs cpe:2.3:h:tenda:ax1806:-:*:*:*:*:*:*:*
cpe:2.3:o:tenda:ax1806_firmware:1.0.0.1:*:*:*:*:*:*:*
Vendors & Products Tenda ax1806

Mon, 26 Aug 2024 17:30:00 +0000

Type Values Removed Values Added
First Time appeared Tenda
Tenda ax1806 Firmware
Weaknesses CWE-121
CPEs cpe:2.3:o:tenda:ax1806_firmware:*:*:*:*:*:*:*:*
Vendors & Products Tenda
Tenda ax1806 Firmware
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 26 Aug 2024 15:45:00 +0000

Type Values Removed Values Added
Description Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function formGetIptv.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-26T16:59:18.816Z

Reserved: 2024-08-21T00:00:00

Link: CVE-2024-44553

cve-icon Vulnrichment

Updated: 2024-08-26T16:58:44.472Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-26T16:15:10.537

Modified: 2024-08-27T14:29:45.970

Link: CVE-2024-44553

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.