CVE-2023-40798 | THREATINT

Description

In Tenda AC23 v16.03.07.45_cn, the formSetIPv6status and formGetWanParameter functions do not authenticate user input parameters, resulting in a post-authentication stack overflow vulnerability.

PUBLISHED Reserved 2023-08-22 | Published 2023-08-25 | Updated 2024-10-02 | Assigner mitre

References

github.com/...nda/AC23/formSetIPv6status-formGetWanParameter

cve.org (CVE-2023-40798)

nvd.nist.gov (CVE-2023-40798)

Download JSON

help @ threatint.eu