CVE-2023-48111

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Nov 20, 2023
Updated: Nov 24, 2023
CWE ID 787

Summary

CVE-2023-48111 is a newly identified vulnerability affecting the Tenda AX1803 v1.0.0.1 router. The issue resides in the saveParentControlInfo function where the time parameter can be manipulated to trigger a stack overflow. An attacker can exploit this vulnerability to cause a Denial of Service (DoS) attack by sending maliciously crafted time data to the affected device. This weakness could potentially lead to service interruptions and network outages, making it essential for users to apply the necessary patches to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share