CVE-2023-51090 | Tenda M3 1.0.0.12(4856) formGetWeiXinConfig stack-based overflow

Posted by Angelo Barbosa | Dec 26, 2023 | CVE

A vulnerability was found in Tenda M3 1.0.0.12(4856). It has been rated as critical. Affected by this issue is the function formGetWeiXinConfig. The manipulation leads to stack-based buffer overflow.

This vulnerability is handled as CVE-2023-51090. The attack needs to be done within the local network. There is no exploit available.

CVE-2023-51090 | Tenda M3 1.0.0.12(4856) formGetWeiXinConfig stack-based overflow

Related Posts

CVE-2024-7258 | WooCommerce Google Feed Manager Plugin up to 2.8.0 on WordPress authorization

CVE-2023-6915 | Linux Kernel up to 6.7-rc6 lib/idr.c ida_free null pointer dereference

CVE-2024-8088 | Python CPython up to 3.13.0 zipfile Module namelist/iterdir/extractall infinite loop (ID 122905)

CVE-2024-36982 | Splunk Enterprise/Cloud Platform Cluster Config REST Endpoint null pointer dereference (SVD-2024-0702)