CVE-2024-30613

Tenda AC15 v15.03.05.18 has a stack overflow vulnerability in the time parameter from the setSmartPowerManagement function.

CVSS v3 4.3 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC15/V15.03.05.18/setSmartPowerManagement.md	Broken Link
https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC15/V15.03.05.18/setSmartPowerManagement.md	Broken Link

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:tenda:ac15_firmware:15.03.05.18:*:*:*:*:*:*:*

cpe:2.3:h:tenda:ac15:-:*:*:*:*:*:*:*

History

08 Apr 2025, 15:27

Type	Values Removed	Values Added
First Time		Tenda ac15 Firmware Tenda Tenda ac15
References	~~() https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC15/V15.03.05.18/setSmartPowerManagement.md -~~	() https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC15/V15.03.05.18/setSmartPowerManagement.md - Broken Link
CPE		cpe:2.3:o:tenda:ac15_firmware:15.03.05.18:::::::* cpe:2.3:h:tenda:ac15:-:::::::*

21 Nov 2024, 09:12

Type	Values Removed	Values Added
References	~~() https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC15/V15.03.05.18/setSmartPowerManagement.md -~~	() https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC15/V15.03.05.18/setSmartPowerManagement.md -

01 Aug 2024, 15:35

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 4.3
CWE		CWE-787

29 Mar 2024, 13:28

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-03-29 13:15

Updated : 2025-04-08 15:27

NVD link : CVE-2024-30613

Mitre link : CVE-2024-30613

CVE.ORG link : CVE-2024-30613

JSON object : View

Products Affected

tenda

ac15
ac15_firmware

CWE

CWE-787

Out-of-bounds Write

4.3 /10