CVE-2024-32317

CWE-121Stack-based Buffer Overflow3 documents3 sources
Severity
7.5HIGH
EPSS
0.3%
top 51.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Tenda Ac10 Firmware
Timeline
PublishedApr 17

Description

Tenda AC10 v4.0 V16.03.10.13 and V16.03.10.20 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:NExploitability: 2.2 | Impact: 4.7

Affected Packages1 packages

NVDtenda/ac10_firmware16.03.10.13, 16.03.10.20+1

🔴Vulnerability Details

2
GHSA
GHSA-wwwp-qjww-7cjj: Tenda AC10 v42024-04-17
CVEList
CVE-2024-32317: Tenda AC10 v42024-04-17
CVE-2024-32317 (HIGH CVSS 7.5) | Tenda AC10 v4.0 V16.03.10.13 and V1 | cvebase.io