CVE-2023-48964

Name of the Vulnerable Software and Affected Versions Tenda i6 version 1.0.0.8(3856)

Description The issue is related to a buffer overflow vulnerability in the Wi-Fi router's microprogram, specifically in the /goform/WifiMacFilterSet component. This vulnerability can be exploited by a remote attacker to cause a denial of service. The vulnerability is associated with writing data beyond the buffer boundaries in memory.

Recommendations For Tenda i6 version 1.0.0.8(3856), as a temporary workaround, consider disabling access to the /goform/WifiMacFilterSet endpoint until a patch is available. Restrict access to this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.