PT-2023-20927 · Tenda · Tenda V15
Published
2023-02-19
·
Updated
2025-02-27
·
CVE-2023-27065
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Tenda V15 version V15.11.0.14(1521 3190 1058)
Description
A buffer overflow issue was found, allowing attackers to cause a Denial of Service (DoS) via a crafted request. The issue is related to the
picName parameter in the formDelWewifiPi function.Recommendations
For Tenda V15 version V15.11.0.14(1521 3190 1058), as a temporary workaround, consider restricting access to the
formDelWewifiPi function until a patch is available. Avoid using the picName parameter in the affected function to minimize the risk of exploitation.Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tenda V15