CVE-2021-40546 MEDIUM

Published: 2023-09-05 | Last Modified: 2024-11-21 | Status: Modified

Description

Tenda AC6 US_AC6V4.0RTL_V02.03.01.26_cn.bin allows attackers (who have the administrator password) to cause a denial of service (device crash) via a long string in the wifiPwd_5G parameter to /goform/setWifi.

Additional Descriptions (1)

Tenda AC6 US_AC6V4.0RTL_V02.03.01.26_cn.bin permite a atacantes (que tienen la contraseña de administrador) provocar una denegación de servicio (caída del dispositivo) a través de una cadena larga en el parámetro wifiPwd_5G en /goform/setWifi.

CVSS Metrics

Base Score: 4.9 (MEDIUM)

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Attack Vector	NETWORK
Attack Complexity	LOW
Privileges Required	HIGH
User Interaction	NONE
Scope	UNCHANGED
Confidentiality Impact	NONE
Integrity Impact	NONE
Availability Impact	HIGH

Source: [email protected]

Type: Primary

Exploitability Score: 1.2

Impact Score: 3.6

Weaknesses

Source	Type	Description
[email protected]	Primary	en CWE-404

Affected Products

Vendor	Product	Version	Update	Type
tenda	ac6_firmware	02.03.01.26	<built-in method update of dict object at 0x72a9cd0c0700>	Operating System

Affected Configurations

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:tenda:ac6_firmware:02.03.01.26:::::::*`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:tenda:ac6:4.0:::::::*`

References

https://github.com/doudoudedi/buffer_overflow/blob/main/Tenda%20AC6%20V4.0-Denial%20of%20Service%20Vulnerability.md
Source: [email protected]

Exploit Third Party Advisory
https://github.com/doudoudedi/buffer_overflow/blob/main/Tenda%20AC6%20V4.0-Denial%20of%20Service%20Vulnerability.md
Source: af854a3a-2127-422b-91ae-364da2661108

Exploit Third Party Advisory