Tenda AC7 V1.0,V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0,V15.03.06.28, AC9 V3.0,V15.03.06.42_multi and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the deviceId parameter in the addWifiMacFilter function.
References
| Link | Resource |
|---|---|
| https://github.com/FirmRec/IoT-Vulns/blob/main/tenda/addWifiMacFilter/README.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
History
09 Aug 2023, 18:05
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-787 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
| References | (MISC) https://github.com/FirmRec/IoT-Vulns/blob/main/tenda/addWifiMacFilter/README.md - Exploit, Third Party Advisory | |
| CPE | cpe:2.3:o:tenda:fh1205_firmware:2.0.0.7\(775\):*:*:*:*:*:*:* cpe:2.3:h:tenda:ac5:1.0:*:*:*:*:*:*:* cpe:2.3:h:tenda:ac9:3.0:*:*:*:*:*:*:* cpe:2.3:o:tenda:ac9_firmware:15.03.06.42_multi:*:*:*:*:*:*:* cpe:2.3:o:tenda:ac7_firmware:15.03.06.44:*:*:*:*:*:*:* cpe:2.3:o:tenda:f1203_firmware:2.0.1.6:*:*:*:*:*:*:* cpe:2.3:h:tenda:ac7:1.0:*:*:*:*:*:*:* cpe:2.3:h:tenda:f1203:-:*:*:*:*:*:*:* cpe:2.3:o:tenda:ac5_firmware:15.03.06.28:*:*:*:*:*:*:* cpe:2.3:h:tenda:fh1205:-:*:*:*:*:*:*:* |
|
| First Time |
Tenda ac9
Tenda fh1205 Firmware Tenda fh1205 Tenda ac5 Tenda ac7 Firmware Tenda ac9 Firmware Tenda f1203 Tenda Tenda f1203 Firmware Tenda ac5 Firmware Tenda ac7 |
07 Aug 2023, 19:30
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-08-07 19:15
Updated : 2023-08-09 18:05
NVD link : CVE-2023-38930
Mitre link : CVE-2023-38930
JSON object : View
Products Affected
tenda
- fh1205_firmware
- fh1205
- ac5_firmware
- ac9
- f1203_firmware
- f1203
- ac7_firmware
- ac7
- ac5
- ac9_firmware
CWE
CWE-787
Out-of-bounds Write