CVE-2022-25546
First published: Wed Mar 09 2022(Updated: )
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function formSetSysToolDDNS. This vulnerability allows attackers to cause a Denial of Service (DoS) via the ddnsUser parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tenda Ax1806 Firmware | =1.0.0.1 | |
| Tenda AX1806 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Tenda AX1806 firmware vulnerability?
The vulnerability ID for this Tenda AX1806 firmware vulnerability is CVE-2022-25546.
What is the severity level of CVE-2022-25546?
The severity level of CVE-2022-25546 is high, with a CVSS score of 7.5.
How does CVE-2022-25546 impact Tenda AX1806 v1.0.0.1?
CVE-2022-25546 allows attackers to cause a Denial of Service (DoS) on Tenda AX1806 v1.0.0.1 through a stack overflow in the function formSetSysToolDDNS.
Are all versions of Tenda AX1806 firmware affected by CVE-2022-25546?
No, only version 1.0.0.1 of Tenda AX1806 firmware is affected by CVE-2022-25546.
How can I fix CVE-2022-25546 on my Tenda AX1806 v1.0.0.1?
To fix CVE-2022-25546 on Tenda AX1806 v1.0.0.1, it is recommended to update the firmware to a patched version provided by Tenda.
- collector/nvd-index
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/tenda
- canonical/tenda ax1806 firmware
- version/tenda ax1806 firmware/1.0.0.1
- canonical/tenda ax1806