CVSS 3.1 Score 9.8 of 10 (high)


Published Oct 3, 2023
Updated: Oct 6, 2023
CWE ID 120


CVE-2023-40830 is a buffer overflow vulnerability found in Tenda AC6 v15.03.05.19. The vulnerability occurs due to the Index parameter not verifying its length, potentially allowing an attacker to execute arbitrary code or crash the affected device. This vulnerability has a severity rating of CRITICAL, with a base score of 9.8 out of 10. It requires no privileges or user interaction for exploitation and can be exploited over the network. The impact includes high integrity and confidentiality impacts, posing a significant danger to organizations using the affected products. There is currently no available remediation or fix for this vulnerability.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-40830 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options