CVE-2023-39827
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Aug 14, 2023
Updated: Aug 18, 2023
CWE ID 787
Summary
CVE-2023-39827 represents a stack overflow vulnerability in Tenda A18 V15.13.07.09. This issue is linked to the formAddMacfilterRule function, which contains a flaw in the handling of the rule_info parameter. When this parameter is manipulated with malicious input, it can trigger an overflow condition, potentially leading to a buffer overflow and enabling attackers to execute arbitrary code. This vulnerability poses a significant threat to the security of affected devices and necessitates prompt patching and updates by users.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Shenzhen Tenda Technology Co. Ltd