CVE-2022-39067: Buffer Overflow
First published: Tue Nov 22 2022(Updated: )
There is a buffer overflow vulnerability in ZTE MF286R. Due to lack of input validation on parameters of the wifi interface, an authenticated attacker could use the vulnerability to perform a denial of service attack.
Credit: psirt@zte.com.cn
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zte Mf286r Firmware | <mf286r_b07 | |
| ZTE MF286R |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for the buffer overflow vulnerability in ZTE MF286R?
The vulnerability ID is CVE-2022-39067.
What is the impact of CVE-2022-39067?
An authenticated attacker could use the vulnerability to perform a denial of service attack.
What software is affected by CVE-2022-39067?
ZTE MF286R with firmware versions up to and including mf286r_b07.
Is ZTE MF286R software version mf286r_b07 vulnerable to CVE-2022-39067?
Yes, ZTE MF286R software version mf286r_b07 is vulnerable to CVE-2022-39067.
How can I fix CVE-2022-39067?
Apply the latest firmware update provided by ZTE to fix the vulnerability.
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/type
- agent/event
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/zte
- canonical/zte mf286r firmware
- canonical/zte mf286r