CVE-2023-39827

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 14, 2023
Updated: Aug 18, 2023
CWE ID 787

Summary

CVE-2023-39827 represents a stack overflow vulnerability in Tenda A18 V15.13.07.09. This issue is linked to the formAddMacfilterRule function, which contains a flaw in the handling of the rule_info parameter. When this parameter is manipulated with malicious input, it can trigger an overflow condition, potentially leading to a buffer overflow and enabling attackers to execute arbitrary code. This vulnerability poses a significant threat to the security of affected devices and necessitates prompt patching and updates by users.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share