CVE-2023-51964

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 10, 2024

Updated: Jan 13, 2024

CWE ID 787

Summary

CVE-2023-51964 is a stack overflow vulnerability affecting Tenda AX1803 v1.0.0.1. This issue is found in the function setIptvInfo, which processes the iptv.stb.port parameter. An attacker can exploit this vulnerability by sending maliciously crafted data to the affected device, resulting in a stack overflow condition. Successful exploitation could lead to the device crashing or potentially allowing an attacker to execute arbitrary code. This vulnerability poses a risk to network security and should be addressed by applying the latest software updates or patches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Vendors

Shenzhen Tenda Technology Co. Ltd

Advisories, Assessments, and Mitigations

Back to Vulnerability Database