CVE-2023-45482
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2023-45482 is a critical vulnerability found in Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn, affecting the product sv5ozA. The vulnerability allows for a stack overflow via the urls parameter in the function get_parentControl_list_Info. The base severity score is 9.8 out of 10, indicating a high potential danger to organizations. It does not require any privileges or user interaction and can be exploited remotely over a network. The impact includes high integrity and confidentiality impacts, with an availability impact also being high. To remediate this vulnerability, it is recommended to update Tenda AC10 to a patched version as soon as it becomes available to mitigate the risk of exploitation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions