CVE-2023-51969

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 10, 2024
Updated: Jan 13, 2024
CWE ID 787

Summary

CVE-2023-51969 is a stack overflow vulnerability affecting Tenda AX1803 v1.0.0.1. This issue arises due to an incorrect handling of the iptv.city.vlan parameter in the getIptvInfo function, leading to an overflow condition and potential exploitation. An attacker could trick a vulnerable device into processing a specially crafted input, causing the stack to be exhausted and the system to crash or even execute arbitrary code. This vulnerability poses a significant risk and requires prompt mitigation measures from users and administrators.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share