CVE-2023-51970

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 10, 2024
Updated: Jan 13, 2024
CWE ID 787

Summary

CVE-2023-51970 is a newly discovered stack overflow vulnerability affecting the Tenda AX1803 router with firmware version v1.0.0.1. This issue is located within the function formSetIptv, where an incorrect input validation of the iptv.stb.mode parameter allows an attacker to overflow the stack, potentially leading to unintended code execution or a denial-of-service condition. This vulnerability poses a significant risk, as it can be exploited remotely, allowing unauthenticated attackers to cause disruptive effects on the targeted network. It is strongly advised that users update their firmware to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share