Details of VAR-202212-0453

ID

VAR-202212-0453

CVE

CVE-2022-4296

TITLE

TP-LINK TL-WR740N Resource Management Error Vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-202212-2541

DESCRIPTION

A vulnerability classified as problematic has been found in TP-Link TL-WR740N. Affected is an unknown function of the component ARP Handler. The manipulation leads to resource consumption. The attack needs to be done within the local network. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-214812.

Trust: 1.0

sources: NVD: CVE-2022-4296

AFFECTED PRODUCTS

vendor:

tp link

model:

tl-wr740n

scope:

version:

Trust: 1.0

sources: NVD: CVE-2022-4296

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2022-4296
value:	MEDIUM
Trust: 1.0
cna@vuldb.com:	CVE-2022-4296
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-202212-2541
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2022-4296
baseSeverity:	MEDIUM
baseScore:	5.5
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	3.6
version:	3.1
Trust: 1.0
cna@vuldb.com:	CVE-2022-4296
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	ADJACENT
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	3.6
version:	3.1
Trust: 1.0

sources: CNNVD: CNNVD-202212-2541 // NVD: CVE-2022-4296 // NVD: CVE-2022-4296

PROBLEMTYPE DATA

problemtype:

CWE-404

Trust: 1.0

sources: NVD: CVE-2022-4296

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202212-2541

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-202212-2541

EXTERNAL IDS

db:	NVD	id:	CVE-2022-4296	Trust: 1.6
db:	VULDB	id:	214812	Trust: 1.6
db:	CNNVD	id:	CNNVD-202212-2541	Trust: 0.6

sources: CNNVD: CNNVD-202212-2541 // NVD: CVE-2022-4296

REFERENCES

url:	https://vuldb.com/?id.214812	Trust: 1.6
url:	https://www.youtube.com/watch?v=d--fb-cesma	Trust: 1.6
url:	https://cxsecurity.com/cveshow/cve-2022-4296/	Trust: 0.6

sources: CNNVD: CNNVD-202212-2541 // NVD: CVE-2022-4296

SOURCES

db:	CNNVD	id:	CNNVD-202212-2541
db:	NVD	id:	CVE-2022-4296

LAST UPDATE DATE

2024-08-14T15:37:17.962000+00:00

SOURCES UPDATE DATE

db:	CNNVD	id:	CNNVD-202212-2541	date:	2022-12-08T00:00:00
db:	NVD	id:	CVE-2022-4296	date:	2023-11-07T03:57:27.377

SOURCES RELEASE DATE

db:	CNNVD	id:	CNNVD-202212-2541	date:	2022-12-06T00:00:00
db:	NVD	id:	CVE-2022-4296	date:	2022-12-06T10:15:09.620