VYPR
Unrated severityNVD Advisory· Published Apr 7, 2022· Updated Aug 3, 2024

CVE-2022-27022

CVE-2022-27022

Description

There is a stack overflow vulnerability in the SetSysTimeCfg() function in the httpd service of Tenda AC9 V15.03.2.21_cn. The attacker can obtain a stable root shell through a constructed payload.

Affected products

2
  • Tenda/AC9cpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = V15.03.2.21_cn

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.