Details of VAR-202403-0942

ID

VAR-202403-0942

CVE

CVE-2024-2900

TITLE

Shenzhen Tenda Technology Co.,Ltd. of AC7 Out-of-bounds write vulnerability in firmware

Trust: 0.8

sources: JVNDB: JVNDB-2024-017294

DESCRIPTION

A vulnerability, which was classified as critical, was found in Tenda AC7 15.03.06.44. This affects the function saveParentControlInfo of the file /goform/saveParentControlInfo. The manipulation of the argument deviceId/time/urls leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-257943. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Shenzhen Tenda Technology Co.,Ltd. of AC7 An out-of-bounds write vulnerability exists in firmware.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. It utilizes the 802.11ac standard, supports dual-band concurrent transmission, and offers wireless speeds up to 1167Mbps. Detailed vulnerability details are currently unavailable

Trust: 2.16

sources: NVD: CVE-2024-2900 // JVNDB: JVNDB-2024-017294 // CNVD: CNVD-2025-20548

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-20548

AFFECTED PRODUCTS

vendor:	tenda	model:	ac7	scope:	eq	version:	15.03.06.44	Trust: 1.6
vendor:	tenda	model:	ac7	scope:	eq	version:	ac7 firmware 15.03.06.44	Trust: 0.8
vendor:	tenda	model:	ac7	scope:	eq	version:	-	Trust: 0.8
vendor:	tenda	model:	ac7	scope:	-	version:	-	Trust: 0.8

sources: CNVD: CNVD-2025-20548 // JVNDB: JVNDB-2024-017294 // NVD: CVE-2024-2900

CVSS

SEVERITY

CVSSV2

CVSSV3

cna@vuldb.com:	CVE-2024-2900
value:	HIGH
Trust: 1.0
nvd@nist.gov:	CVE-2024-2900
value:	HIGH
Trust: 1.0
OTHER:	JVNDB-2024-017294
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2025-20548
value:	HIGH
Trust: 0.6

cna@vuldb.com:	CVE-2024-2900
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
OTHER:	JVNDB-2024-017294
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
CNVD:	CNVD-2025-20548
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

cna@vuldb.com:	CVE-2024-2900
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.1
Trust: 2.0
NVD:	JVNDB-2024-017294
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2025-20548 // JVNDB: JVNDB-2024-017294 // NVD: CVE-2024-2900 // NVD: CVE-2024-2900

PROBLEMTYPE DATA

problemtype:	CWE-787	Trust: 1.0
problemtype:	CWE-121	Trust: 1.0
problemtype:	Stack-based buffer overflow (CWE-121) [ others ]	Trust: 0.8
problemtype:	Out-of-bounds writing (CWE-787) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2024-017294 // NVD: CVE-2024-2900

PATCH

title:

Patch for Tenda AC7 Buffer Overflow Vulnerability

url:

https://www.cnvd.org.cn/patchInfo/show/729266

Trust: 0.6

sources: CNVD: CNVD-2025-20548

EXTERNAL IDS

db:	NVD	id:	CVE-2024-2900	Trust: 3.2
db:	VULDB	id:	257943	Trust: 2.4
db:	JVNDB	id:	JVNDB-2024-017294	Trust: 0.8
db:	CNVD	id:	CNVD-2025-20548	Trust: 0.6

sources: CNVD: CNVD-2025-20548 // JVNDB: JVNDB-2024-017294 // NVD: CVE-2024-2900

REFERENCES

url:	https://vuldb.com/?id.257943	Trust: 2.4
url:	https://vuldb.com/?submit.300364	Trust: 2.4
url:	https://github.com/abcdefg-png/iot-vulnerable/blob/main/tenda/ac7/v1/saveparentcontrolinfo_deviceid.md	Trust: 2.4
url:	https://vuldb.com/?ctiid.257943	Trust: 1.6
url:	https://nvd.nist.gov/vuln/detail/cve-2024-2900	Trust: 0.8
url:	https://cxsecurity.com/cveshow/cve-2024-2900/	Trust: 0.6

sources: CNVD: CNVD-2025-20548 // JVNDB: JVNDB-2024-017294 // NVD: CVE-2024-2900

SOURCES

db:	CNVD	id:	CNVD-2025-20548
db:	JVNDB	id:	JVNDB-2024-017294
db:	NVD	id:	CVE-2024-2900

LAST UPDATE DATE

2025-09-08T23:24:21.447000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2025-20548	date:	2025-09-05T00:00:00
db:	JVNDB	id:	JVNDB-2024-017294	date:	2025-01-23T02:49:00
db:	NVD	id:	CVE-2024-2900	date:	2025-01-22T17:51:57.717

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2025-20548	date:	2025-09-05T00:00:00
db:	JVNDB	id:	JVNDB-2024-017294	date:	2025-01-23T00:00:00
db:	NVD	id:	CVE-2024-2900	date:	2024-03-26T20:15:10.500