CVE-2022-25555
First published: Wed Mar 09 2022(Updated: )
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service (DoS) via the ntpServer parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tenda Ax1806 Firmware | =1.0.0.1 | |
| Tenda AX1806 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Tenda AX1806 firmware vulnerability?
The vulnerability ID for this Tenda AX1806 firmware vulnerability is CVE-2022-25555.
What is the severity level of CVE-2022-25555?
The severity level of CVE-2022-25555 is high, with a CVSS score of 7.5.
What is the impact of CVE-2022-25555?
CVE-2022-25555 allows attackers to cause a Denial of Service (DoS) by exploiting a stack overflow in the Tenda AX1806 firmware's fromSetSysTime function.
Which software version of Tenda AX1806 firmware is affected by CVE-2022-25555?
The Tenda AX1806 firmware version 1.0.0.1 is affected by CVE-2022-25555.
Is the Tenda AX1806 device itself vulnerable to CVE-2022-25555?
No, the Tenda AX1806 device is not vulnerable to CVE-2022-25555.
- collector/nvd-index
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/references
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/tags
- agent/type
- agent/description
- agent/first-publish-date
- agent/event
- vendor/tenda
- canonical/tenda ax1806 firmware
- version/tenda ax1806 firmware/1.0.0.1
- canonical/tenda ax1806