PT-2023-2878 · Trendnet+13 · Trendnet+13

Published

2023-05-22

Updated

2023-05-25

CVE-2023-31070

CVSS v2.0

6.8

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions TOTOLINK, TP-LINK, ASUS, Arris, Buffalo, D-Link, Linksys, Netgear, TRENDnet, Xiaomi, Luxul, Phicomm, Ubee (affected versions not specified) Broadcom BCM47xx SDK (affected versions not specified)

Description The issue is related to a buffer overflow in the Efficient Multicast Forwarding (EMF) module of the router firmware. Exploitation of this issue may allow an attacker to execute arbitrary code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2023-02826

CVE-2023-31070

Affected Products

Asus

Arris

Broadcom Bcm47Xx Sdk

Buffalo

D-Link

Linksys

Luxul

Netgear

Phicomm

Totolink

Tp-Link

Trendnet

Ubee

Xiaomi

PT-2023-2878 · Trendnet+13 · Trendnet+13

CVE-2023-31070

Weakness Enumeration

Related Identifiers

Affected Products

References · 7