CVE-2024-10280 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.5 MEDIUM	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
VulDB	CNA	6.5 MEDIUM				CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 44%

Vendor	Product	Version
tenda	ac15_firmware	15.03.05.18
tenda	ac15_firmware	15.03.05.19
tenda	ac7_firmware	15.03.06.44
tenda	ac10u_firmware	15.03.06.48
tenda	ac10u_firmware	15.03.06.49
tenda	ac500_firmware	1.0.0.14
tenda	ac500_firmware	1.0.0.16
tenda	ac500_firmware	2.0.1.9\(1307\)
tenda	ac18_firmware	15.03.05.05
tenda	ac18_firmware	15.03.05.19\(6318\)
tenda	ac9_firmware	15.03.2.13
tenda	ac9_firmware	15.03.05.14
tenda	ac9_firmware	15.03.05.19\(6318\)
tenda	ac9_firmware	15.03.06.42
tenda	ac1206_firmware	15.03.06.23
tenda	ac6_firmware	15.03.06.23
tenda	ac10_firmware	16.03.10.13
tenda	ac10_firmware	16.03.10.20
tenda	ac10_firmware	16.03.48.19
tenda	ac10_firmware	16.03.48.23
tenda	ac8_firmware	16.03.34.06
tenda	ac8_firmware	16.03.34.09

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-476 - NULL Pointer Dereference
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

References

https://github.com/JohenanLi/router_vuls/blob/main/websReadEvent/websReadEvent.md

https://vuldb.com/?ctiid.281555

https://vuldb.com/?id.281555

https://vuldb.com/?submit.426417

https://www.tenda.com.cn/