Details of VAR-202405-0120

ID

VAR-202405-0120

CVE

CVE-2024-4495

TITLE

Shenzhen Tenda Technology Co.,Ltd. of i21 Out-of-bounds write vulnerability in firmware

Trust: 0.8

sources: JVNDB: JVNDB-2024-017536

DESCRIPTION

A vulnerability was found in Tenda i21 1.0.0.14(4656) and classified as critical. Affected by this issue is the function formWifiMacFilterGet. The manipulation of the argument index leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-263084. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Shenzhen Tenda Technology Co.,Ltd. of i21 An out-of-bounds write vulnerability exists in firmware.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. The vulnerability is caused by the parameter index of the function formWifiMacFilterGet failing to correctly verify the length of the input data. Remote attackers can exploit this vulnerability to execute arbitrary code on the system or cause a denial of service attack

Trust: 2.16

sources: NVD: CVE-2024-4495 // JVNDB: JVNDB-2024-017536 // CNVD: CNVD-2024-22408

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2024-22408

AFFECTED PRODUCTS

vendor:	tenda	model:	i21	scope:	eq	version:	1.0.0.14\(4656\)	Trust: 1.0
vendor:	tenda	model:	i21	scope:	eq	version:	-	Trust: 0.8
vendor:	tenda	model:	i21	scope:	-	version:	-	Trust: 0.8
vendor:	tenda	model:	i21	scope:	eq	version:	i21 firmware 1.0.0.14(4656)	Trust: 0.8
vendor:	tenda	model:	i21	scope:	eq	version:	1.0.0.14(4656)	Trust: 0.6

sources: CNVD: CNVD-2024-22408 // JVNDB: JVNDB-2024-017536 // NVD: CVE-2024-4495

CVSS

SEVERITY

CVSSV2

CVSSV3

cna@vuldb.com:	CVE-2024-4495
value:	HIGH
Trust: 1.0
nvd@nist.gov:	CVE-2024-4495
value:	HIGH
Trust: 1.0
OTHER:	JVNDB-2024-017536
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2024-22408
value:	HIGH
Trust: 0.6

cna@vuldb.com:	CVE-2024-4495
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
OTHER:	JVNDB-2024-017536
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
CNVD:	CNVD-2024-22408
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

cna@vuldb.com:	CVE-2024-4495
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.1
Trust: 2.0
NVD:	JVNDB-2024-017536
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2024-22408 // JVNDB: JVNDB-2024-017536 // NVD: CVE-2024-4495 // NVD: CVE-2024-4495

PROBLEMTYPE DATA

problemtype:	CWE-787	Trust: 1.0
problemtype:	CWE-121	Trust: 1.0
problemtype:	Stack-based buffer overflow (CWE-121) [ others ]	Trust: 0.8
problemtype:	Out-of-bounds writing (CWE-787) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2024-017536 // NVD: CVE-2024-4495

EXTERNAL IDS

db:	NVD	id:	CVE-2024-4495	Trust: 3.2
db:	VULDB	id:	263084	Trust: 1.8
db:	JVNDB	id:	JVNDB-2024-017536	Trust: 0.8
db:	CNVD	id:	CNVD-2024-22408	Trust: 0.6

sources: CNVD: CNVD-2024-22408 // JVNDB: JVNDB-2024-017536 // NVD: CVE-2024-4495

REFERENCES

url:	https://vuldb.com/?id.263084	Trust: 1.8
url:	https://vuldb.com/?submit.323605	Trust: 1.8
url:	https://nvd.nist.gov/vuln/detail/cve-2024-4495	Trust: 1.4
url:	https://github.com/abcdefg-png/iot-vulnerable/blob/main/tenda/i/i21/formwifimacfilterget.md	Trust: 1.0
url:	https://vuldb.com/?ctiid.263084	Trust: 1.0

sources: CNVD: CNVD-2024-22408 // JVNDB: JVNDB-2024-017536 // NVD: CVE-2024-4495

SOURCES

db:	CNVD	id:	CNVD-2024-22408
db:	JVNDB	id:	JVNDB-2024-017536
db:	NVD	id:	CVE-2024-4495

LAST UPDATE DATE

2025-01-29T23:30:58.697000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2024-22408	date:	2024-05-14T00:00:00
db:	JVNDB	id:	JVNDB-2024-017536	date:	2025-01-28T01:23:00
db:	NVD	id:	CVE-2024-4495	date:	2025-01-27T18:34:53.583

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2024-22408	date:	2024-05-11T00:00:00
db:	JVNDB	id:	JVNDB-2024-017536	date:	2025-01-28T00:00:00
db:	NVD	id:	CVE-2024-4495	date:	2024-05-05T06:15:06.637