Description
Tenda AX12 v1.0 v22.03.01.46 contains a stack overflow in the deviceList parameter of the sub_42E410 function.
References (2)
Core 2
Scores
CVSS v3
6.8
EPSS
0.0021
EPSS Percentile
43.3%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-121
Status
published
Products (1)
tenda/ax12_firmware
22.03.01.46
Published
Jul 10, 2024
Tracked Since
Feb 18, 2026