CVE-2024-0996

A vulnerability classified as critical has been found in Tenda i9 1.0.0.9(4122). This affects the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-252261 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS v3 7.2 HIGH
CVSS v2.0 8.3 HIGH

7.2^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.2 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

8.3^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:M/C:C/I:C/A:C

Exploitability : 6.4 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication MULTIPLE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
https://jylsec.notion.site/Tenda-i9-has-stack-buffer-overflow-vulnerability-in-formSetCfm-c1bd9745c81e4207aceeaa1ba5e10563?pvs=4	Exploit Permissions Required
https://vuldb.com/?ctiid.252261	Permissions Required Third Party Advisory VDB Entry
https://vuldb.com/?id.252261	Permissions Required Third Party Advisory VDB Entry
https://jylsec.notion.site/Tenda-i9-has-stack-buffer-overflow-vulnerability-in-formSetCfm-c1bd9745c81e4207aceeaa1ba5e10563?pvs=4	Exploit Permissions Required
https://vuldb.com/?ctiid.252261	Permissions Required Third Party Advisory VDB Entry
https://vuldb.com/?id.252261	Permissions Required Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:tenda:i9_firmware:1.0.0.6\(1020\):*:*:*:*:*:*:*

cpe:2.3:h:tenda:i9:2.0:*:*:*:*:*:*:*

History

21 Nov 2024, 08:47

Type	Values Removed	Values Added
References	~~() https://jylsec.notion.site/Tenda-i9-has-stack-buffer-overflow-vulnerability-in-formSetCfm-c1bd9745c81e4207aceeaa1ba5e10563?pvs=4 - Exploit, Permissions Required~~	() https://jylsec.notion.site/Tenda-i9-has-stack-buffer-overflow-vulnerability-in-formSetCfm-c1bd9745c81e4207aceeaa1ba5e10563?pvs=4 - Exploit, Permissions Required
References	~~() https://vuldb.com/?ctiid.252261 - Permissions Required, Third Party Advisory, VDB Entry~~	() https://vuldb.com/?ctiid.252261 - Permissions Required, Third Party Advisory, VDB Entry
References	~~() https://vuldb.com/?id.252261 - Permissions Required, Third Party Advisory, VDB Entry~~	() https://vuldb.com/?id.252261 - Permissions Required, Third Party Advisory, VDB Entry
CVSS	v2 : ~~8.3~~ v3 : ~~9.8~~	v2 : 8.3 v3 : 7.2

02 Feb 2024, 15:37

Type	Values Removed	Values Added
First Time		Tenda i9 Tenda Tenda i9 Firmware
CPE		cpe:2.3:h:tenda:i9:2.0:::::::* cpe:2.3:o:tenda:i9_firmware:1.0.0.6\(1020\):::::::*
References	~~() https://vuldb.com/?ctiid.252261 -~~	() https://vuldb.com/?ctiid.252261 - Permissions Required, Third Party Advisory, VDB Entry
References	~~() https://jylsec.notion.site/Tenda-i9-has-stack-buffer-overflow-vulnerability-in-formSetCfm-c1bd9745c81e4207aceeaa1ba5e10563?pvs=4 -~~	() https://jylsec.notion.site/Tenda-i9-has-stack-buffer-overflow-vulnerability-in-formSetCfm-c1bd9745c81e4207aceeaa1ba5e10563?pvs=4 - Exploit, Permissions Required
References	~~() https://vuldb.com/?id.252261 -~~	() https://vuldb.com/?id.252261 - Permissions Required, Third Party Advisory, VDB Entry
CWE	~~CWE-121~~	CWE-787
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.8

29 Jan 2024, 03:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-01-29 03:15

Updated : 2024-11-21 08:47

NVD link : CVE-2024-0996

Mitre link : CVE-2024-0996

CVE.ORG link : CVE-2024-0996

JSON object : View

Products Affected

tenda

i9
i9_firmware

CWE

CWE-121

Stack-based Buffer Overflow

CWE-787

Out-of-bounds Write

7.2 /10