Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2022-38325

Published: 15/09/2022 Updated: 19/09/2022
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Tendacn

Vulnerability Summary

Tenda AC15 WiFi Router V15.03.05.19_multi and AC18 WiFi Router V15.03.05.19_multi were discovered to contain a buffer overflow via the filePath parameter at /goform/expandDlnaFile.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

tendacn ac15_firmware 15.03.05.19_multi

tendacn ac18_firmware 15.03.05.19_multi

Github Repositories

https://github.com/1160300418/Vuls

Describe the vulnerabilities I found

Vuls Describe the vulnerabilities I found D-Link CVE-2022-34527 CVE-2022-34528 Tenda CVE-2022-38325 CVE-2022-38326

References

CWE-120https://github.com/1160300418/Vuls/blob/main/Tenda/AC/Vul_expandDlnaFile.mdhttps://nvd.nist.govhttps://github.com/1160300418/Vuls
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook