Check Point Advisories

Tenda Routers Buffer Overflow (CVE-2022-38325; CVE-2022-38326; CVE-2022-40853; CVE-2022-40854; CVE-2022-40855; CVE-2022-40860; CVE-2022-40862; CVE-2022-40864; CVE-2022-40865; CVE-2022-40866; CVE-2022-40867; CVE-2022-40868; CVE-2022-40869; CVE-2023-27061)

Vulnerability
Protection

Check Point Reference:	CPAI-2022-1015
Date Published:	12 Dec 2022
Severity:	Critical
Last Updated:	Tuesday 15 October, 2024
Source:
Industry Reference:	CVE-2022-38325 CVE-2022-38326 CVE-2022-40853 CVE-2022-40854 CVE-2022-40855 CVE-2022-40860 CVE-2022-40862 CVE-2022-40864 CVE-2022-40865 CVE-2022-40866 CVE-2022-40867 CVE-2022-40868 CVE-2022-40869 CVE-2023-27061
Protection Provided by:	Security Gateway R81, R80, R77, R75
Who is Vulnerable?	Tenda AC15 WiFi router V15.03.05.19_multi Tenda AC18 WiFi router V15.03.05.19_multi Tenda W20E router V15.11.0.6 Tenda AC18 V15.03.05.05 Tenda AC6 V1.0 V15.03.05.19 Tenda AC10U 15.03.06.49_multi_TDE01 Tenda V15V1.0 V15.11.0.14
Vulnerability Description	A buffer overflow vulnerability exists in Tenda routers. Successful exploitation of this vulnerability could result in a denial of service or execution of arbitrary code into the affected system.

Protection Overview

This protection detects attempts to exploit this vulnerability.

In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.

Security Gateway R81 / R80 / R77 / R75

In the IPS tab, click Protections and find the Tenda Routers Buffer Overflow protection using the Search tool and Edit the protection's settings.
Install policy on all Security Gateways.

This protection's log will contain the following information:

Attack Name: Application Servers Protection Violation.
Attack Information: Tenda Routers Buffer Overflow