cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-40904,https://securityvulnerability.io/vulnerability/CVE-2023-40904,Stack Overflow Vulnerability in Tenda AC10 Router,"An identified stack overflow vulnerability in the Tenda AC10 router occurs when the parameters macFilterType and deviceList are improperly handled during the configuration setting process at /goform/setMacFilterCfg. This flaw may allow an attacker to execute arbitrary code, potentially compromising the device's integrity and security. It is essential for users of the affected firmware version to apply recommended patches to mitigate the risk.",Tenda,Ac10v4 Firmware,9.8,CRITICAL,0.001970000099390745,false,,false,false,false,,,false,false,,2023-08-24T00:00:00.000Z,0
CVE-2023-40901,https://securityvulnerability.io/vulnerability/CVE-2023-40901,Stack Overflow Vulnerability in Tenda AC10 Router,"A stack overflow vulnerability has been identified in the Tenda AC10 router, specifically affecting version v4 US_AC10V4.0si_V16.03.10.13_cn. This flaw is triggered by improper handling of parameters within the /goform/setMacFilterCfg endpoint, notably the macFilterType and deviceList parameters. Attackers could exploit this vulnerability to manipulate the device's memory, potentially leading to unauthorized access or denial of service. It is crucial for users of affected devices to apply necessary patches to mitigate risks associated with this vulnerability.",Tenda,Ac10v4 Firmware,9.8,CRITICAL,0.0013000000035390258,false,,false,false,false,,,false,false,,2023-08-24T00:00:00.000Z,0
CVE-2023-40902,https://securityvulnerability.io/vulnerability/CVE-2023-40902,Stack Overflow Vulnerability in Tenda AC10 Router,"The Tenda AC10 router has a stack overflow vulnerability that can be triggered through manipulation of parameters during the IP-MAC binding process. This flaw, located in the SetIpMacBind function, may allow an attacker to exploit memory allocation issues, potentially leading to arbitrary code execution or a denial of service on the affected device.",Tenda,Ac10v4 Firmware,9.8,CRITICAL,0.001970000099390745,false,,false,false,false,,,false,false,,2023-08-24T00:00:00.000Z,0