Tenda AC10 V1.0 V15.03.06.23, AC1206 V15.03.06.23, AC8 v4 V16.03.34.06, AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, AC5 V1.0 V15.03.06.28, AC9 V3.0 V15.03.06.42_multi and AC10 v4.0 V16.03.10.13 were discovered to contain a stack overflow via the list parameter in the formSetVirtualSer function.
References
| Link | Resource |
|---|---|
| https://github.com/FirmRec/IoT-Vulns/blob/main/tenda/formSetVirtualSer/README.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
History
No history.
Information
Published : 2023-08-07 19:15
Updated : 2023-08-10 18:22
NVD link : CVE-2023-38937
Mitre link : CVE-2023-38937
CVE.ORG link : CVE-2023-38937
JSON object : View
Products Affected
tenda
- ac8_firmware
- ac7_firmware
- ac5
- ac9_firmware
- ac9
- ac7
- ac1206
- ac6
- ac1206_firmware
- ac5_firmware
- ac10
- ac8
- ac10_firmware
- ac6_firmware
CWE
CWE-787
Out-of-bounds Write