CVE-2023-37723

Name of the Vulnerable Software and Affected Versions Tenda F1202 version V1.0BR V1.2.0.20(408) Tenda FH1202 version V1.2.0.19 EN Tenda PA202 (affected versions not specified) Tenda PW201A (affected versions not specified) Tenda 4G300 (affected versions not specified)

Description A stack overflow issue was discovered in the fromqossetting function, related to the processing of the page parameter. This could allow a remote attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations For Tenda F1202 version V1.0BR V1.2.0.20(408), consider disabling the fromqossetting function until a patch is available. For Tenda FH1202 version V1.2.0.19 EN, restrict access to the vulnerable function fromqossetting to minimize the risk of exploitation. For Tenda PA202, PW201A, and 4G300, at the moment, there is no information about a newer version that contains a fix for this vulnerability.