CVE-2023-40892 - OpenCVE

Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter schedStartTime and schedEndTime at /goform/openSchedWifi.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Tenda	Ac8v4 Ac8v4 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:tenda:ac8v4_firmware:16.03.34.06:*:*:*:*:*:*:*

cpe:2.3:h:tenda:ac8v4:-:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/peris-navince/founded-0-days/blob/main/ac8/setSchedEWifi/1.md	Exploit Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-08-24T00:00:00

Updated: 2023-08-24T17:16:44.903432

Reserved: 2023-08-22T00:00:00

Link: CVE-2023-40892

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-08-24T18:15:07.707

Modified: 2023-08-29T18:17:47.427

Link: CVE-2023-40892

JSON object: View

Redhat Information

No data.

CWE

CWE-787