CVE-2023-45480

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 29, 2023
Updated: Dec 1, 2023
CWE ID 787

Summary

CVE-2023-45480 is a stack overflow vulnerability affecting the Tenda AC10 router model with firmware US_AC10V4.0si_V16.03.10.13_cn. This issue is located in the function sub_47D878, which can be exploited through a maliciously crafted src parameter. Successful exploitation may result in the attacker gaining unauthorized control over the affected device, potentially leading to serious security implications. Users are urged to update their firmware to a secure version as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share