CVE-2023-37721

Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter in the function fromSafeMacFilter.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:tenda:f1202_firmware:1.2.0.20\(408\):*:*:*:*:*:*:*
cpe:2.3:h:tenda:f1202:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:tenda:fh1202_firmware:1.2.0.19_en:*:*:*:*:*:*:*
cpe:2.3:h:tenda:fh1202:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:tenda:f1202_firmware:1.0br:*:*:*:*:*:*:*
cpe:2.3:h:tenda:f1202:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:tenda:4g300_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:tenda:4g300:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:tenda:pw201a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:tenda:pw201a:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:tenda:pa202_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:tenda:pa202:-:*:*:*:*:*:*:*

History

21 Jul 2023, 14:26

Type Values Removed Values Added
References (MISC) https://github.com/FirmRec/IoT-Vulns/blob/main/tenda/fromSafeMacFilter/report.md - (MISC) https://github.com/FirmRec/IoT-Vulns/blob/main/tenda/fromSafeMacFilter/report.md - Exploit, Third Party Advisory
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
CWE CWE-787
CPE cpe:2.3:o:tenda:f1202_firmware:1.0br:*:*:*:*:*:*:*
cpe:2.3:h:tenda:4g300:-:*:*:*:*:*:*:*
cpe:2.3:h:tenda:pw201a:-:*:*:*:*:*:*:*
cpe:2.3:o:tenda:4g300_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:tenda:fh1202_firmware:1.2.0.19_en:*:*:*:*:*:*:*
cpe:2.3:o:tenda:pw201a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:tenda:pa202:-:*:*:*:*:*:*:*
cpe:2.3:o:tenda:f1202_firmware:1.2.0.20\(408\):*:*:*:*:*:*:*
cpe:2.3:h:tenda:f1202:-:*:*:*:*:*:*:*
cpe:2.3:h:tenda:fh1202:-:*:*:*:*:*:*:*
cpe:2.3:o:tenda:pa202_firmware:-:*:*:*:*:*:*:*
First Time Tenda f1202 Firmware
Tenda pw201a
Tenda pa202
Tenda pa202 Firmware
Tenda pw201a Firmware
Tenda 4g300
Tenda f1202
Tenda 4g300 Firmware
Tenda fh1202
Tenda fh1202 Firmware
Tenda

14 Jul 2023, 00:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-07-14 00:15

Updated : 2024-02-28 20:33


NVD link : CVE-2023-37721

Mitre link : CVE-2023-37721

CVE.ORG link : CVE-2023-37721


JSON object : View

Products Affected

tenda

  • f1202_firmware
  • fh1202_firmware
  • pw201a_firmware
  • f1202
  • pa202
  • pw201a
  • 4g300_firmware
  • pa202_firmware
  • fh1202
  • 4g300
CWE
CWE-787

Out-of-bounds Write