CVE-2023-40838: OS Command Injection
First published: Wed Aug 30 2023(Updated: )
Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin function 'sub_3A1D0' contains a command execution vulnerability.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tenda Ac6 Firmware | =15.03.05.16 | |
| Tenda AC6 | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID of Tenda AC6?
The vulnerability ID of Tenda AC6 is CVE-2023-40838.
What is the severity level of CVE-2023-40838?
The severity level of CVE-2023-40838 is critical (9.8).
How does the vulnerability affect Tenda AC6?
The vulnerability affects Tenda AC6 firmware version 15.03.05.16.
Is Tenda AC6 version 1.0 vulnerable to CVE-2023-40838?
No, Tenda AC6 version 1.0 is not vulnerable to CVE-2023-40838.
How can I fix CVE-2023-40838?
To fix CVE-2023-40838, update your Tenda AC6 firmware to a version that is not affected by the vulnerability.
- collector/nvd-api
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/tenda
- canonical/tenda ac6 firmware
- version/tenda ac6 firmware/15.03.05.16
- canonical/tenda ac6
- version/tenda ac6/1.0