Lucene search

MitreCVE-2023-39784

HistoryAug 21, 2023 - 1:15 a.m.

CVE-2023-39784

2023-08-2101:15:08

CWE-787

mitre

web.nvd.nist.gov

cve-2023-39784

tenda ac8v4

v16.03.34.06

stack overflow

list parameter

save_virtualser_data

nvd

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

33.1%

JSON

Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the list parameter in the save_virtualser_data function.

Affected configurations

Nvd

Node

tendaac8v4Match-

AND

tendaac8v4_firmwareMatch16.03.34.06

VendorProductVersionCPE
tendaac8v4-cpe:2.3:h:tenda:ac8v4:-:*:*:*:*:*:*:*
tendaac8v4_firmware16.03.34.06cpe:2.3:o:tenda:ac8v4_firmware:16.03.34.06:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tenda	ac8v4	-	cpe:2.3:h:tenda:ac8v4:-:::::::*
tenda	ac8v4_firmware	16.03.34.06	cpe:2.3:o:tenda:ac8v4_firmware:16.03.34.06:::::::*

References

tenda.com

github.com/Xunflash/IOT/tree/main/Tenda_AC8_V4

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

33.1%

JSON

Related for CVE-2023-39784