CVE-2023-47456

Name of the Vulnerable Software and Affected Versions Tenda AX1806 version 1.0.0.1

Description The issue is related to a stack overflow vulnerability in the sub 455D4() function of the Tenda AX1806 router's firmware, which occurs when processing the wpapsk crypto parameter. This vulnerability can be exploited by a remote attacker to cause a denial of service. The vulnerability is also related to the fromSetWirelessRepeat function.

Recommendations For Tenda AX1806 version 1.0.0.1, consider disabling the sub 455D4() function or restricting access to the fromSetWirelessRepeat function as a temporary workaround until a patch is available. Avoid using the wpapsk crypto parameter in affected configurations to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.