CVE-2022-37292: Buffer Overflow
First published: Thu Aug 25 2022(Updated: )
Tenda AX12 V22.03.01.21_CN is vulnerable to Buffer Overflow. This overflow is triggered in the sub_42FDE4 function, which satisfies the request of the upper-level interface function sub_430124, that is, handles the post request under /goform/SetIpMacBind.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tenda Ax12 Firmware | =22.03.01.21_cn | |
| Tenda AX12 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this Tenda AX12 firmware vulnerability?
The vulnerability ID for this Tenda AX12 firmware vulnerability is CVE-2022-37292.
What is the severity of CVE-2022-37292?
The severity of CVE-2022-37292 is medium with a severity value of 5.5.
Which software versions are affected by CVE-2022-37292?
The Tenda AX12 firmware version 22.03.01.21_CN is affected by CVE-2022-37292.
How is the Buffer Overflow vulnerability triggered in Tenda AX12 firmware?
The Buffer Overflow vulnerability in Tenda AX12 firmware is triggered in the sub_42FDE4 function, which handles the post request under /goform/SetIpMacBind.
Is Tenda AX12 hardware vulnerable to CVE-2022-37292?
No, the Tenda AX12 hardware itself is not vulnerable to CVE-2022-37292.
- collector/nvd-index
- agent/severity
- agent/references
- agent/type
- agent/event
- agent/weakness
- agent/author
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/tenda
- canonical/tenda ax12 firmware
- version/tenda ax12 firmware/22.03.01.21_cn
- canonical/tenda ax12