Details of VAR-202411-0572

ID

VAR-202411-0572

CVE

CVE-2024-11056

TITLE

Shenzhen Tenda Technology Co.,Ltd. of AC10 Buffer error vulnerability in firmware

Trust: 0.8

sources: JVNDB: JVNDB-2024-012643

DESCRIPTION

A vulnerability, which was classified as critical, was found in Tenda AC10 16.03.10.13. Affected is the function FUN_0046AC38 of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Shenzhen Tenda Technology Co.,Ltd. of AC10 The firmware contains a buffer error vulnerability and a stack-based buffer overflow vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. The vulnerability is caused by the parameter wpapsk_crypto in the file /goform/WifiExtraSet failing to correctly verify the length of the input data. Remote attackers can exploit this vulnerability to execute arbitrary code on the system or cause a denial of service attack

Trust: 2.16

sources: NVD: CVE-2024-11056 // JVNDB: JVNDB-2024-012643 // CNVD: CNVD-2024-44853

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2024-44853

AFFECTED PRODUCTS

vendor:	tenda	model:	ac10	scope:	eq	version:	16.03.10.13	Trust: 1.6
vendor:	tenda	model:	ac10	scope:	eq	version:	ac10 firmware 16.03.10.13	Trust: 0.8
vendor:	tenda	model:	ac10	scope:	-	version:	-	Trust: 0.8
vendor:	tenda	model:	ac10	scope:	eq	version:	-	Trust: 0.8

sources: CNVD: CNVD-2024-44853 // JVNDB: JVNDB-2024-012643 // NVD: CVE-2024-11056

CVSS

SEVERITY

CVSSV2

CVSSV3

cna@vuldb.com:	CVE-2024-11056
value:	HIGH
Trust: 1.0
nvd@nist.gov:	CVE-2024-11056
value:	HIGH
Trust: 1.0
OTHER:	JVNDB-2024-012643
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2024-44853
value:	HIGH
Trust: 0.6

cna@vuldb.com:	CVE-2024-11056
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
OTHER:	JVNDB-2024-012643
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
CNVD:	CNVD-2024-44853
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

cna@vuldb.com:	CVE-2024-11056
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.1
Trust: 2.0
NVD:	JVNDB-2024-012643
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2024-44853 // JVNDB: JVNDB-2024-012643 // NVD: CVE-2024-11056 // NVD: CVE-2024-11056

PROBLEMTYPE DATA

problemtype:	CWE-119	Trust: 1.0
problemtype:	CWE-121	Trust: 1.0
problemtype:	Buffer error (CWE-119) [ others ]	Trust: 0.8
problemtype:	Stack-based buffer overflow (CWE-121) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2024-012643 // NVD: CVE-2024-11056

PATCH

title:

Patch for Tenda AC10 Buffer Overflow Vulnerability (CNVD-2024-44853)

url:

https://www.cnvd.org.cn/patchInfo/show/618211

Trust: 0.6

sources: CNVD: CNVD-2024-44853

EXTERNAL IDS

db:	NVD	id:	CVE-2024-11056	Trust: 3.2
db:	VULDB	id:	283800	Trust: 1.6
db:	JVNDB	id:	JVNDB-2024-012643	Trust: 0.8
db:	CNVD	id:	CNVD-2024-44853	Trust: 0.6

sources: CNVD: CNVD-2024-44853 // JVNDB: JVNDB-2024-012643 // NVD: CVE-2024-11056

REFERENCES

url:	https://tasty-foxtrot-3a8.notion.site/tenda-ac10v4-stack-overflow-1380448e619580409bb1e1ac85f45570	Trust: 1.8
url:	https://vuldb.com/?submit.439358	Trust: 1.8
url:	https://www.tenda.com.cn/	Trust: 1.8
url:	https://vuldb.com/?id.283800	Trust: 1.6
url:	https://vuldb.com/?ctiid.283800	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2024-11056	Trust: 0.8

sources: CNVD: CNVD-2024-44853 // JVNDB: JVNDB-2024-012643 // NVD: CVE-2024-11056

SOURCES

db:	CNVD	id:	CNVD-2024-44853
db:	JVNDB	id:	JVNDB-2024-012643
db:	NVD	id:	CVE-2024-11056

LAST UPDATE DATE

2024-11-16T22:57:32.307000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2024-44853	date:	2024-11-14T00:00:00
db:	JVNDB	id:	JVNDB-2024-012643	date:	2024-11-15T01:10:00
db:	NVD	id:	CVE-2024-11056	date:	2024-11-14T15:21:09.907

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2024-44853	date:	2024-11-14T00:00:00
db:	JVNDB	id:	JVNDB-2024-012643	date:	2024-11-15T00:00:00
db:	NVD	id:	CVE-2024-11056	date:	2024-11-10T17:15:15.697