CVE-2022-45504
First published: Thu Dec 08 2022(Updated: )
An issue in the component tpi_systool_handle(0) (/goform/SysToolRestoreSet) of Tenda W6-S v1.0.0.4(510) allows unauthenticated attackers to arbitrarily reboot the device.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Tenda W6_S | =1.0.0.4\(510\) | |
| Tenda W6-s Firmware | ||
| Tenda W6_S | =1.0.0.4\(510\) | |
| Tenda W6-s Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2022-45504?
CVE-2022-45504 is considered a critical vulnerability as it allows unauthenticated attackers to arbitrarily reboot the Tenda W6-S device.
How do I fix CVE-2022-45504?
To fix CVE-2022-45504, update the Tenda W6-S firmware to the latest version recommended by the manufacturer.
Who is affected by CVE-2022-45504?
Users of the Tenda W6-S firmware version 1.0.0.4(510) are affected by CVE-2022-45504.
What type of attack does CVE-2022-45504 enable?
CVE-2022-45504 enables unauthenticated remote attacks that can lead to unauthorized device reboots.
Is CVE-2022-45504 patched in newer firmware releases?
Yes, CVE-2022-45504 is patched in firmware versions released after 1.0.0.4(510), so upgrading is essential.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/author
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/tenda
- canonical/tenda w6_s
- version/tenda w6_s/1.0.0.4\(510\)
- canonical/tenda w6-s firmware