CVE-2023-51958

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 10, 2024
Updated: Jan 13, 2024
CWE ID 787

Summary

CVE-2023-51958 is a stack overflow vulnerability found in Tenda AX1803 v1.0.0.1, specifically impacting the iptv.stb.port parameter in the formGetIptv function. This vulnerability has a base severity rating of CRITICAL with a base score of 9.8 according to NIST's National Vulnerability Database (NVD). The affected product is identified as 'mxayeC'. The exploitability score is 3.9, and the impact score is 5.9, indicating a high risk to confidentiality and integrity. The vector string for this vulnerability is CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, signifying that it can be exploited over the network without requiring any privileges or user interaction. Organizations using Tenda AX1803 v1.0.0.1 should take immediate action to remediate this vulnerability to prevent potential cyber-attacks exploiting this weakness, as it poses significant dangers to their systems and data security.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-51958 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options