Unrated severityNVD Advisory· Published Aug 30, 2023· Updated Oct 1, 2024
CVE-2023-40837
CVE-2023-40837
Description
Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin function 'sub_ADD50' contains a command execution vulnerability. In the "formSetIptv" function, obtaining the "list" and "vlanId" fields, unfiltered passing these two fields as parameters to the "sub_ADD50" function to execute commands.
Affected products
2Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.