CVE-2023-37711

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 10, 2023
Updated: Jul 13, 2023
CWE ID 787

Summary

CVE-2023-37711 is a critical vulnerability that affects the Tenda AC1206 V15.03.06.23 and AC10 V15.03.06.47 products. It has been discovered that these products contain a stack overflow in the deviceId parameter within the saveParentControlInfo function. The vulnerability is categorized as CWE-787, which refers to an out-of-bounds write issue. The base severity score for this vulnerability is 9.8 out of 10, indicating its criticality. The potential danger posed to organizations is high, with both confidentiality and integrity impacts being rated as high as well. To remediate this vulnerability, it is recommended to apply the necessary patches or updates provided by Tenda promptly.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-37711 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options