CVE-2023-27014
First published: Fri Apr 07 2023(Updated: )
Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the sub_46AC38 function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tenda Ac10 Firmware | =16.03.10.13_cn | |
| Tenda AC10 | =4.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-27014.
What is the severity of CVE-2023-27014?
CVE-2023-27014 has a severity rating of 9.8 (Critical).
How does CVE-2023-27014 affect Tenda AC10 firmware version 16.03.10.13_cn?
CVE-2023-27014 affects Tenda AC10 firmware version 16.03.10.13_cn by allowing attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.
Is Tenda AC10 version 4.0 affected by CVE-2023-27014?
Tenda AC10 version 4.0 is not affected by CVE-2023-27014.
How can I mitigate CVE-2023-27014?
To mitigate CVE-2023-27014, it is recommended to update the Tenda AC10 firmware to a non-vulnerable version when available, and to implement network segmentation and proper access controls to limit exposure.
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/tenda
- canonical/tenda ac10 firmware
- version/tenda ac10 firmware/16.03.10.13_cn
- canonical/tenda ac10
- version/tenda ac10/4.0