VYPR
Unrated severityNVD Advisory· Published Sep 23, 2022· Updated May 22, 2025

CVE-2022-40855

CVE-2022-40855

Description

Tenda W20E router V15.11.0.6 contains a stack overflow in the function formSetPortMapping with post request 'goform/setPortMapping/'. This vulnerability allows attackers to cause a Denial of Service (DoS) or Remote Code Execution (RCE) via the portMappingServer, portMappingProtocol, portMappingWan, porMappingtInternal, and portMappingExternal parameters.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Tenda/W20E routerdescription
  • Tenda/W20Ellm-fuzzy
    Range: = V15.11.0.6

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.