CVE-2022-36233 — Out-of-bounds Write in AC9 Firmware

Severity

5.5MEDIUMNVD

EPSS

0.1%

top 82.23%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedAug 19

Latest updateAug 20

Description

Tenda AC9 V15.03.2.13 is vulnerable to Buffer Overflow via httpd, form_fast_setting_wifi_set. httpd.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

GHSA

GHSA-p74g-vq49-qc26: Tenda AC9 V15↗2022-08-20

▶

CVEList

CVE-2022-36233: Tenda AC9 V15↗2022-08-19

▶