CVE-2023-45482 | Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn get_parentControl_list_Info urls stack-based overflow

Inserito da Angelo Barbosa | Nov 29, 2023 | CVE

A vulnerability classified as critical has been found in Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn. This affects the function get_parentControl_list_Info. The manipulation of the argument urls leads to stack-based buffer overflow.

This vulnerability is uniquely identified as CVE-2023-45482. The attack can only be initiated within the local network. There is no exploit available.

CVE-2023-45482 | Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn get_parentControl_list_Info urls stack-based overflow

Post correlati

CVE-2024-51247 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi doPPPo command injection

CVE-2022-4960 | cloudfavorites favorites-web 1.3.0 Nickname cross site scripting (Issue 127)

CVE-2023-28952 | IBM Cognos Controller 10.4.1/10.4.2/11.0.0 Application Log neutralization for logs (XFDB-251463)

CVE-2023-52493 | Linux Kernel up to 5.10.209/5.15.148/6.1.75/6.6.14/6.7.2 mhi parse_xfer_event denial of service