Lucene search

CVE-2023-50225

🗓️ 03 May 2024 03:10:16Reported by zdiType

TP-Link TL-WR902AC Buffer Overflow RCE Vulnerability

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
NVD	CVE-2023-50225	3 May 202403:16	–	nvd
Cvelist	CVE-2023-50225 TP-Link TL-WR902AC dm_fillObjByStr Stack-based Buffer Overflow Remote Code Execution Vulnerability	3 May 202402:14	–	cvelist
Zero Day Initiative	TP-Link TL-WR902AC dm_fillObjByStr Stack-based Buffer Overflow Remote Code Execution Vulnerability	19 Dec 202300:00	–	zdi
Vulnrichment	CVE-2023-50225 TP-Link TL-WR902AC dm_fillObjByStr Stack-based Buffer Overflow Remote Code Execution Vulnerability	3 May 202402:14	–	vulnrichment

Vulners

Vulnrichment

Node

tp-link tl-wr902acRange≤0.9.1

[
  {
    "vendor": "TP-Link",
    "product": "TL-WR902AC",
    "versions": [
      {
        "version": "0.9.1 0.3 v008a.0 Build 211025 Rel.76009n(5553)",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
tp-link	www.tp-link.com/ca/support/download/tl-wr902ac/v3/
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-23-1809/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 May 2024 03:16Current

7.1High risk

Vulners AI Score7.1

CVSS36.8

EPSS0.00815

SSVC

CWE-121

cve-2023-50225; network-adjacent attackers; authentication required; libcmm.so; user-supplied data; root context