CVE-2023-40797

Name of the Vulnerable Software and Affected Versions Tenda AC23 version 16.03.07.45 cn

Description The issue arises from the sub 4781A4 function not validating user-entered parameters, leading to a post-authentication stack overflow. This occurs after a user has successfully authenticated, indicating a potential for significant impact. No information is provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited.

Recommendations For Tenda AC23 version 16.03.07.45 cn, as a temporary workaround, consider restricting access to the sub 4781A4 function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.