Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-38933
HistoryAug 07, 2023 - 7:15 p.m.

CVE-2023-38933

2023-08-0719:15:11
CWE-787
[email protected]
web.nvd.nist.gov
7
tenda
routers
stack overflow
deviceid parameter

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

57.0%

JSON

Tenda AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0 V15.03.06.28, FH1203 V2.0.1.6 and AC9 V3.0 V15.03.06.42_multi, and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the deviceId parameter in the formSetClientState function.

Affected configurations

Nvd
Node
tendaac10_firmwareMatch15.03.06.23
AND
tendaac10Match1.0
Node
tendaac1206_firmwareMatch15.03.06.23
AND
tendaac1206Match-
Node
tendaac6_firmwareMatch15.03.06.23
AND
tendaac6Match2.0
Node
tendaac7_firmwareMatch15.03.06.44
AND
tendaac7Match1.0
Node
tendaf1203_firmwareMatch2.0.1.6
AND
tendaf1203Match-
Node
tendaac5_firmwareMatch15.03.06.28
AND
tendaac5Match1.0
Node
tendafh1203_firmwareMatch2.0.1.6
AND
tendafh1203Match-
Node
tendafh1205_firmwareMatch2.0.0.7\(775\)
AND
tendafh1205Match-
Node
tendaac9_firmwareMatch15.03.06.42_multi
AND
tendaac9Match3.0
VendorProductVersionCPE
tendaac10_firmware15.03.06.23cpe:2.3:o:tenda:ac10_firmware:15.03.06.23:*:*:*:*:*:*:*
tendaac101.0cpe:2.3:h:tenda:ac10:1.0:*:*:*:*:*:*:*
tendaac1206_firmware15.03.06.23cpe:2.3:o:tenda:ac1206_firmware:15.03.06.23:*:*:*:*:*:*:*
tendaac1206-cpe:2.3:h:tenda:ac1206:-:*:*:*:*:*:*:*
tendaac6_firmware15.03.06.23cpe:2.3:o:tenda:ac6_firmware:15.03.06.23:*:*:*:*:*:*:*
tendaac62.0cpe:2.3:h:tenda:ac6:2.0:*:*:*:*:*:*:*
tendaac7_firmware15.03.06.44cpe:2.3:o:tenda:ac7_firmware:15.03.06.44:*:*:*:*:*:*:*
tendaac71.0cpe:2.3:h:tenda:ac7:1.0:*:*:*:*:*:*:*
tendaf1203_firmware2.0.1.6cpe:2.3:o:tenda:f1203_firmware:2.0.1.6:*:*:*:*:*:*:*
tendaf1203-cpe:2.3:h:tenda:f1203:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 181

Related

prion 1
cvelist 1
cve 1
prion
prion
Stack overflow
2023-08-07 19:15:00
cvelist
cvelist
CVE-2023-38933
2023-08-07 00:00:00
cve
cve
CVE-2023-38933
2023-08-07 19:15:11

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

57.0%

JSON
Related for NVD:CVE-2023-38933
prion1cvelist1cve1