CVE-2023-51743

Name of the Vulnerable Software and Affected Versions Skyworth Router CM5100 version 4.1.1.24

Description This issue is due to insufficient validation of user-supplied input for the Set Upstream Channel ID (UCID) parameter at the web interface. A remote attacker could exploit this by supplying specially crafted input to the parameter, potentially allowing them to perform a Denial of Service (DoS) attack on the targeted system.

Recommendations For Skyworth Router CM5100 version 4.1.1.24, consider restricting access to the web interface to minimize the risk of exploitation. As a temporary workaround, avoid using the Set Upstream Channel ID (UCID) parameter until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.