CVE-2023-40904 | Tenda AC10 16.03.10.13_cn /goform/setMacFilterCfg macFilterType/deviceList stack-based overflow

10月 2, 2024
10:56 pm

A vulnerability was found in Tenda AC10 16.03.10.13_cn and classified as critical. Affected by this issue is some unknown functionality of the file /goform/setMacFilterCfg. The manipulation of the argument macFilterType/deviceList leads to stack-based buffer overflow.

This vulnerability is handled as CVE-2023-40904. Access to the local network is required for this attack. There is no exploit available.

CVE-2023-40904 | Tenda AC10 16.03.10.13_cn /goform/setMacFilterCfg macFilterType/deviceList stack-based overflow

Elvescore.io

Recent Posts

CVE-2024-10453 – Elementor Website Builder Stored Cross-Site Scripting Vulnerability

CVE-2024-11688 – WordPress LaTeX2HTML Reflected Cross-Site Scripting

CVE-2024-11722 – WordPress DynamiApps Frontend Admin SQL Injection

CVE-2024-12408 – “Amazon Web Services (AWS) WordPress Reflected Cross-Site Scripting (XSS)”

CVE-2024-12558 – WordPress WP BASE Booking Unauthenticated Database Access Vulnerability

CVE-2024-12591 – MagicPost WordPress Stored Cross-Site Scripting

CVE-2023-40904 | Tenda AC10 16.03.10.13_cn /goform/setMacFilterCfg macFilterType/deviceList stack-based overflow

CVE-2023-40904 | Tenda AC10 16.03.10.13_cn /goform/setMacFilterCfg macFilterType/deviceList stack-based overflow