Lucene search
HistoryApr 07, 2023 - 2:15 a.m.
CVE-2023-25215
cve-2023-25215
tenda ac5
stack overflow
dos
arbitrary code execution
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
57.6%
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.
Affected configurations
Node
tendaac5_firmwareMatch15.03.06.28
tendaac5Match1.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| tenda:ac5_firmware | tenda ac5 firmware | eq | 15.03.06.28 |
Related
nvd
nvd
CVE-2023-25215
2023-04-07 02:15:07
prion
prion
Stack overflow
2023-04-07 02:15:00
cnvd
cnvd
Tenda AC5 saveParentControlInfo function buffer overflow vulnerability
2023-04-11 00:00:00
cvelist
cvelist
CVE-2023-25215
2023-04-07 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
57.6%
Related for CVE-2023-25215