Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-40412

Tenda AX12 v1.0 v22.03.01.46 contains a stack overflow in the deviceList parameter of the sub_42E410 function.

Published

2024-07-10T16:15:04.290

Last Modified

2025-07-07T16:20:02.940

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.8 (MEDIUM)

Weaknesses

Type: Secondary
CWE-121

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	tenda	ax12_firmware	22.03.01.46	Yes
Hardware	tenda	ax12	1.0	No

References

https://github.com/Feng-ZZ-pwn/IOT/blob/main/Tenda%20AX12/1/README.md Broken Link ([email protected])
https://static.tenda.com.cn/tdcweb/download/uploadfile/AX12/V22.03.01.46.zip Product ([email protected])
https://github.com/Feng-ZZ-pwn/IOT/blob/main/Tenda%20AX12/1/README.md Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://static.tenda.com.cn/tdcweb/download/uploadfile/AX12/V22.03.01.46.zip Product (af854a3a-2127-422b-91ae-364da2661108)