CVE-2023-37716
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2023-37716 is a newly disclosed vulnerability affecting multiple Tenda routers, including the F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN, AC10 V1.0, AC1206 V1.0, AC7 V1.0, and AC5 V1.0, as well as the AC9 V3.0. This issue stems from a stack overflow in the page parameter in the function fromNatStaticSetting. Successful exploitation of this vulnerability could lead to denial-of-service (DoS) attacks, unauthorized access, or potentially more severe consequences. It is crucial that users of these affected devices apply the necessary patches as soon as possible to mitigate the risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Shenzhen Tenda Technology Co. Ltd