⚠ Actively exploited
Added to CISA KEV on 2021-11-03. Federal agencies required to patch by 2021-11-17. Required action: Apply updates per vendor instructions..

CVE-2021-31755

CWE-787Out-of-bounds Write8 documents7 sources
Severity
9.8CRITICAL
EPSS
94.0%
top 0.11%
CISA KEV
KEV
Added 2021-11-03
Due 2021-11-17
Exploit
Exploited in wild
Active exploitation observed
Affected products
1
Tenda Ac11 Firmware
Timeline
PublishedMay 7
KEV addedNov 3
KEV dueNov 17
Latest updateMay 24
CISA Required Action: Apply updates per vendor instructions.

Description

An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in /goform/setmac allows attackers to execute arbitrary code on the system via a crafted post request.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

NVDtenda/ac11_firmware02.03.01.104_cn

🔴Vulnerability Details

3
GHSA
GHSA-539c-2w6v-9rwx: An issue was discovered on Tenda AC11 devices with firmware through 022022-05-24
CVEList
CVE-2021-31755: An issue was discovered on Tenda AC11 devices with firmware through 022021-05-07
VulnCheck
Tenda AC11 Router Stack Buffer Overflow Vulnerability2021

💥Exploits & PoCs

1
Nuclei
Tenda Router AC11 - Remote Command Injection

🔍Detection Rules

2
Suricata
ET EXPLOIT Trenda Router AC11 RCE Inbound (CVE-2021-31755)2021-07-08
Suricata
ET EXPLOIT Trenda Router AC11 RCE Outbound (CVE-2021-31755)2021-07-08

📋Vendor Advisories

1
CISA
Tenda AC11 Router Stack Buffer Overflow Vulnerability2021-11-03
CVE-2021-31755 (CRITICAL CVSS 9.8) | An issue was discovered on Tenda AC | cvebase.io