CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-31756

An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in /gofrom/setwanType allows attackers to execute arbitrary code on the system via a crafted post request. This occurs when input vector controlled by malicious attack get copied to the stack variable.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.015

EPSS Ranking 80.4%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

https://github.com/Yu3H0/IoT_CVE/tree/main/Tenda/CVE_1
https://github.com/Yu3H0/IoT_CVE/tree/main/Tenda/CVE_1

Products affected by CVE-2021-31756

Tenda » Ac11 » Version: N/A

cpe:2.3:h:tenda:ac11:-
Tenda » Ac11 Firmware » Version: 02.03.01.104_cn

cpe:2.3:o:tenda:ac11_firmware:02.03.01.104_cn

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-31756

Products

Pricing

Contact Us