| Titre | Tenda i22 V1.0.0.3(4687) NULL Pointer Dereference |
|---|
| Description | A vulnerability has been identified in Tenda I22 firmware version V1.0.0.3(4687). This issue affects the function websReadEvent of the file /goform/GetIPTV. Improper manipulation of the Content-Length leads to passing a null pointer to the strlen function, resulting in a null pointer dereference. This vulnerability can be exploited remotely, enabling potential attackers to take advantage of the flaw. |
|---|
| La source | ⚠️ https://github.com/xiaobor123/tenda-vul-i22 |
|---|
| Utilisateur | xiaobor123 (UID 76914) |
|---|
| Soumission | 01/11/2024 09:56 (il y a 1 Année) |
|---|
| Modérer | 03/11/2024 07:35 (2 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 282919 [Tenda i22 1.0.0.3(4687) SysToo websReadEvent Content-Length déni de service] |
|---|
| Points | 19 |
|---|