CVE-2023-50983

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 20, 2023

Updated: Dec 22, 2023

CWE ID 77

Summary

CVE-2023-50983 is a newly disclosed vulnerability affecting the Tenda i29 v1.0 V1.0.0.5 firmware. This issue permits attackers to inject malicious commands through the sysScheduleRebootSet function, potentially leading to unauthorized system modifications or remote code execution. The vulnerability poses a significant risk as it can be triggered without authentication requirements, making it crucial for affected device owners to apply the necessary patches as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Shenzhen Tenda Technology Co. Ltd

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/t1xsro
https://www.cve.org/CVERecord?id=CVE-2023-50983
https://nvd.nist.gov/vuln/detail/CVE-2023-50983

Back to Vulnerability Database

CVE-2023-50983

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations