216.73.216.86

CVE-2024-10280

· Published 23/10/2024 14:15 · Modified 01/11/2024 14:03

Labels: CVE-2024-10280 2024-10-23CVE-2024-10280CWE-476[email protected]

Essential information

Published
23/10/2024 14:15
Modified
01/11/2024 14:03
Author
Creator
CVSS
7.5 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS metrics

Description

A vulnerability was found in Tenda AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500 and AC1206 up to 20241022. It has been rated as problematic. This issue affects the function websReadEvent of the file /goform/GetIPTV. The manipulation of the argument Content-Length leads to null pointer dereference. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

NVD status

Status
Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
tenda / ac15 firmware cpe:2.3:o:tenda:ac15_firmware:15.03.05.18:*:*:*:*:*:*:*
tenda / ac15 firmware cpe:2.3:o:tenda:ac15_firmware:15.03.05.19:*:*:*:*:*:*:*
tenda / ac15 cpe:2.3:h:tenda:ac15:-:*:*:*:*:*:*:*
tenda / ac7 firmware cpe:2.3:o:tenda:ac7_firmware:15.03.06.44:*:*:*:*:*:*:*
tenda / ac7 cpe:2.3:h:tenda:ac7:-:*:*:*:*:*:*:*
tenda / ac10u firmware cpe:2.3:o:tenda:ac10u_firmware:15.03.06.48:*:*:*:*:*:*:*
tenda / ac10u firmware cpe:2.3:o:tenda:ac10u_firmware:15.03.06.49:*:*:*:*:*:*:*
tenda / ac10u cpe:2.3:h:tenda:ac10u:-:*:*:*:*:*:*:*
tenda / ac500 firmware cpe:2.3:o:tenda:ac500_firmware:1.0.0.14:*:*:*:*:*:*:*
tenda / ac500 firmware cpe:2.3:o:tenda:ac500_firmware:1.0.0.16:*:*:*:*:*:*:*
tenda / ac500 firmware cpe:2.3:o:tenda:ac500_firmware:2.0.1.9\(1307\):*:*:*:*:*:*:*
tenda / ac500 cpe:2.3:h:tenda:ac500:-:*:*:*:*:*:*:*
tenda / ac18 firmware cpe:2.3:o:tenda:ac18_firmware:15.03.05.05:*:*:*:*:*:*:*
tenda / ac18 firmware cpe:2.3:o:tenda:ac18_firmware:15.03.05.19\(6318\):*:*:*:*:*:*:*
tenda / ac18 cpe:2.3:h:tenda:ac18:-:*:*:*:*:*:*:*
tenda / ac9 firmware cpe:2.3:o:tenda:ac9_firmware:15.03.2.13:*:*:*:*:*:*:*
tenda / ac9 firmware cpe:2.3:o:tenda:ac9_firmware:15.03.05.14:*:*:*:*:*:*:*
tenda / ac9 firmware cpe:2.3:o:tenda:ac9_firmware:15.03.05.19\(6318\):*:*:*:*:*:*:*
tenda / ac9 cpe:2.3:h:tenda:ac9:1.0:*:*:*:*:*:*:*
tenda / ac9 firmware cpe:2.3:o:tenda:ac9_firmware:15.03.06.42:*:*:*:*:*:*:*
tenda / ac9 cpe:2.3:h:tenda:ac9:3.0:*:*:*:*:*:*:*
tenda / ac1206 firmware cpe:2.3:o:tenda:ac1206_firmware:15.03.06.23:*:*:*:*:*:*:*
tenda / ac1206 cpe:2.3:h:tenda:ac1206:-:*:*:*:*:*:*:*
tenda / ac6 firmware cpe:2.3:o:tenda:ac6_firmware:15.03.06.23:*:*:*:*:*:*:*
tenda / ac6 cpe:2.3:h:tenda:ac6:2.0:*:*:*:*:*:*:*
tenda / ac10 firmware cpe:2.3:o:tenda:ac10_firmware:16.03.10.13:*:*:*:*:*:*:*
tenda / ac10 firmware cpe:2.3:o:tenda:ac10_firmware:16.03.10.20:*:*:*:*:*:*:*
tenda / ac10 cpe:2.3:h:tenda:ac10:4.0:*:*:*:*:*:*:*
tenda / ac10 firmware cpe:2.3:o:tenda:ac10_firmware:16.03.48.19:*:*:*:*:*:*:*
tenda / ac10 firmware cpe:2.3:o:tenda:ac10_firmware:16.03.48.23:*:*:*:*:*:*:*
tenda / ac10 cpe:2.3:h:tenda:ac10:5.0:*:*:*:*:*:*:*
tenda / ac8 firmware cpe:2.3:o:tenda:ac8_firmware:16.03.34.06:*:*:*:*:*:*:*
tenda / ac8 firmware cpe:2.3:o:tenda:ac8_firmware:16.03.34.09:*:*:*:*:*:*:*
tenda / ac8 cpe:2.3:h:tenda:ac8:4.0:*:*:*:*:*:*:*

References