CVE-2022-28556

Published: May 4, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin is vulnerable to Buffer Overflow. The stack overflow vulnerability lies in the /goform/setpptpservercfg interface of the web. The sent post data startip and endip are copied to the stack using the sanf function, resulting in stack overflow. Similarly, this vulnerability can be used together with CVE-2021-44971

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/doudoudedi/TendaAC15_vul/blob/main/TendaAC15-vul.md

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-28556

Description

Affected Products

References