CVE-2023-51966
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Jan 10, 2024
Updated: Jan 13, 2024
CWE ID 787
Summary
CVE-2023-51966 is a newly disclosed stack overflow vulnerability impacting the Tenda AX1803 router running firmware version 1.0.0.1. The issue lies within the setIptvInfo function, specifically the handling of the adv.iptv.stballvlans parameter. An attacker could exploit this flaw by crafting a maliciously crafted input to trigger the stack overflow, potentially leading to unintended code execution and compromise of the affected device. Network administrators are urged to update their firmware as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Shenzhen Tenda Technology Co. Ltd