CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-40797
https://notcve.org/view.php?id=CVE-2023-40797
In Tenda AC23 v16.03.07.45_cn, the sub_4781A4 function does not validate the parameters entered by the user, resulting in a post-authentication stack overflow vulnerability. • https://github.com/lst-oss/Vulnerability/tree/main/Tenda/AC23/sub_4781A4 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-40893
https://notcve.org/view.php?id=CVE-2023-40893
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter time at /goform/PowerSaveSet. • https://github.com/peris-navince/founded-0-days/blob/main/ac8/setSmartPowerManagement/1.md • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-40901
https://notcve.org/view.php?id=CVE-2023-40901
Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter macFilterType and parameter deviceList at url /goform/setMacFilterCfg. • https://github.com/peris-navince/founded-0-days/blob/main/ac10/formSetMacFilterCfg/1.md https://github.com/peris-navince/founded-0-days/blob/main/ac10/fromSetStaticRouteCfg/1.md https://nvd.nist.gov/vuln/detail/CVE-2023-40901 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-40902
https://notcve.org/view.php?id=CVE-2023-40902
Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter list and bindnum at /goform/SetIpMacBind. • https://github.com/peris-navince/founded-0-days/blob/main/ac10/SetIpMacBind/1.md • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-40897
https://notcve.org/view.php?id=CVE-2023-40897
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter mac at /goform/GetParentControlInfo. • https://github.com/peris-navince/founded-0-days/blob/main/ac8/GetParentControlInfo/1.md • CWE-787: Out-of-bounds Write •