CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-40799
https://notcve.org/view.php?id=CVE-2023-40799
Tenda AC23 Vv16.03.07.45_cn is vulnerable to Buffer Overflow via sub_450A4C function. • https://github.com/lst-oss/Vulnerability/blob/main/Tenda/AC23/sub_450A4C • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-40800
https://notcve.org/view.php?id=CVE-2023-40800
The compare_parentcontrol_time function does not authenticate user input parameters, resulting in a post-authentication stack overflow vulnerability in Tenda AC23 v16.03.07.45_cn. • https://github.com/lst-oss/Vulnerability/tree/main/Tenda/AC23/compare_parentcontrol_time • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-40801
https://notcve.org/view.php?id=CVE-2023-40801
The sub_451784 function does not validate the parameters entered by the user, resulting in a stack overflow vulnerability in Tenda AC23 v16.03.07.45_cn • https://github.com/lst-oss/Vulnerability/tree/main/Tenda/AC23/sub_451784 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2023-40915
https://notcve.org/view.php?id=CVE-2023-40915
Tenda AX3 v16.03.12.11 has a stack buffer overflow vulnerability detected at function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS) via the ssid parameter. • https://github.com/Korey0sh1/IoT_vuln/blob/main/Tenda/AX3/form_fast_setting_wifi_set.md • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-40798
https://notcve.org/view.php?id=CVE-2023-40798
In Tenda AC23 v16.03.07.45_cn, the formSetIPv6status and formGetWanParameter functions do not authenticate user input parameters, resulting in a post-authentication stack overflow vulnerability. • https://github.com/lst-oss/Vulnerability/tree/main/Tenda/AC23/formSetIPv6status-formGetWanParameter • CWE-20: Improper Input Validation •