CVE-2023-46526

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 25, 2023
Updated: Oct 26, 2023
CWE ID 787

Summary

CVE-2023-46526 is a critical vulnerability affecting TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin software, with a CVSS base score of 9.8. The vulnerability is classified as CWE-787 (Out-of-bounds Write) and involves a stack overflow through the function resetCloudPwdRegister. The exploitability score is 3.9, and it can be exploited remotely via a network attack vector, without requiring any privileges or user interaction. This vulnerability poses a high risk to organizations as it can lead to the compromise of integrity and confidentiality of data stored within the affected system. The availability impact is also high, potentially disrupting normal operations. A patch or update from TP-LINK is necessary to remediate this vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-46526 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options