CVE-2023-40892
First published: Thu Aug 24 2023(Updated: )
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter schedStartTime and schedEndTime at /goform/openSchedWifi.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tenda Ac8v4 Firmware | =16.03.34.06 | |
| Tenda AC8V4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-40892?
The severity of CVE-2023-40892 is critical with a CVSS score of 9.8.
How does CVE-2023-40892 affect Tenda AC8 v4 firmware version 16.03.34.06?
CVE-2023-40892 affects Tenda AC8 v4 firmware version 16.03.34.06 by causing a stack overflow through the parameter schedStartTime and schedEndTime at /goform/openSchedWifi.
Is Tenda AC8V4 vulnerable to CVE-2023-40892?
No, Tenda AC8V4 is not vulnerable to CVE-2023-40892.
How can I fix the stack overflow vulnerability in Tenda AC8 v4 firmware version 16.03.34.06?
To fix the stack overflow vulnerability in Tenda AC8 v4 firmware version 16.03.34.06, it is recommended to update to a patched version provided by Tenda.
What is the Common Weakness Enumeration (CWE) ID associated with CVE-2023-40892?
The Common Weakness Enumeration (CWE) ID associated with CVE-2023-40892 is CWE-787.
- collector/nvd-api
- collector/nvd-index
- agent/author
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/epss-latest
- source/FIRST
- agent/severity
- agent/weakness
- agent/references
- agent/description
- agent/epss
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/tenda
- canonical/tenda ac8v4 firmware
- version/tenda ac8v4 firmware/16.03.34.06
- canonical/tenda ac8v4