CVE-2023-37716

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 14, 2023
Updated: Jul 21, 2023
CWE ID 787

Summary

CVE-2023-37716 is a newly disclosed vulnerability affecting multiple Tenda routers, including the F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN, AC10 V1.0, AC1206 V1.0, AC7 V1.0, and AC5 V1.0, as well as the AC9 V3.0. This issue stems from a stack overflow in the page parameter in the function fromNatStaticSetting. Successful exploitation of this vulnerability could lead to denial-of-service (DoS) attacks, unauthorized access, or potentially more severe consequences. It is crucial that users of these affected devices apply the necessary patches as soon as possible to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share