CVE-2022-24159
First published: Fri Feb 04 2022(Updated: )
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetPPTPServer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the startIp and endIp parameters.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tenda Ax3 Firmware | =16.03.12.10_cn | |
| Tenda AX3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this Tenda AX3 stack overflow vulnerability?
The vulnerability ID for this Tenda AX3 stack overflow vulnerability is CVE-2022-24159.
What is the severity rating of CVE-2022-24159?
CVE-2022-24159 has a severity rating of 7.5 (high).
What is the affected software version of CVE-2022-24159?
The affected software version of CVE-2022-24159 is Tenda Ax3 Firmware version 16.03.12.10_CN.
How does CVE-2022-24159 impact Tenda AX3?
CVE-2022-24159 allows attackers to cause a Denial of Service (DoS) on Tenda AX3 devices through the startIp and endIp parameters.
Is Tenda AX3 vulnerable to CVE-2022-24159?
Yes, Tenda AX3 devices with the affected firmware version 16.03.12.10_CN are vulnerable to CVE-2022-24159.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/tenda
- canonical/tenda ax3 firmware
- version/tenda ax3 firmware/16.03.12.10_cn
- canonical/tenda ax3