CVE-2023-49427
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Jan 10, 2024
Updated: Jan 12, 2024
CWE ID 787
Summary
CVE-2023-49427: A buffer overflow vulnerability has been identified in Tenda AX12's V22.03.01.46 firmware. This issue permits remote attackers to trigger a denial of service (DoS) condition by exploiting the list parameter in the SetNetControlList function. Successful exploitation may lead to unintended system behavior or crashes, disrupting network availability. Users are urged to update their devices to a secure and patched version as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Shenzhen Tenda Technology Co. Ltd