CVE-2023-45480

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 29, 2023

Updated: Dec 1, 2023

CWE ID 787

Summary

CVE-2023-45480 is a stack overflow vulnerability affecting the Tenda AC10 router model with firmware US_AC10V4.0si_V16.03.10.13_cn. This issue is located in the function sub_47D878, which can be exploited through a maliciously crafted src parameter. Successful exploitation may result in the attacker gaining unauthorized control over the affected device, potentially leading to serious security implications. Users are urged to update their firmware to a secure version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Shenzhen Tenda Technology Co. Ltd

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s8JcIc
https://www.cve.org/CVERecord?id=CVE-2023-45480
https://nvd.nist.gov/vuln/detail/CVE-2023-45480

Back to Vulnerability Database

CVE-2023-45480

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations