CVE-2023-37715

Name of the Vulnerable Software and Affected Versions Tenda F1202 version V1.0BR V1.2.0.20(408) Tenda FH1202 version V1.2.0.19 EN

Description A stack overflow issue was discovered in the frmL7ProtForm function, related to the page parameter. This could allow a remote attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations For Tenda F1202 version V1.0BR V1.2.0.20(408), consider disabling the frmL7ProtForm function until a patch is available. For Tenda FH1202 version V1.2.0.19 EN, restrict access to the frmL7ProtForm function to minimize the risk of exploitation. Avoid using the page parameter in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.