CVE-2022-40876
First published: Thu Oct 27 2022(Updated: )
In Tenda ax1803 v1.0.0.1, the http requests handled by the fromAdvSetMacMtuWan functions, wanSpeed, cloneType, mac, can cause a stack overflow and enable remote code execution (RCE).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tenda Ax1803 Firmware | =1.0.0.1 | |
| Tenda AX1803 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2022-40876.
What is the severity of CVE-2022-40876?
The severity of CVE-2022-40876 is critical with a severity value of 9.8.
What is the affected software for CVE-2022-40876?
The affected software for CVE-2022-40876 is Tenda ax1803 v1.0.0.1 firmware.
How can CVE-2022-40876 be exploited?
CVE-2022-40876 can be exploited by sending HTTP requests to the vulnerable Tenda ax1803 v1.0.0.1 firmware.
Are there any fixes or patches available for CVE-2022-40876?
At the moment, there are no known fixes or patches available for CVE-2022-40876. It is recommended to update to a non-vulnerable version or use alternative security measures.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/type
- agent/tags
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/tenda
- canonical/tenda ax1803 firmware
- version/tenda ax1803 firmware/1.0.0.1
- canonical/tenda ax1803