CNNVD-202601-1013 Information
CNNVD ID
CNNVD-202601-1013
Related CVE
- CNNVD Published: 2026-01-06
Description (Chinese)
Tenda AC23是中国腾达(Tenda)公司的一款双频千兆无线路由器。 Tenda AC23 16.03.07.52版本存在安全漏洞,该漏洞源于对文件/goform/PowerSaveSet中参数Time的错误操作,可能导致缓冲区溢出。
Description (English)
Tenda AC23 is a dual-frequency, giga-wireless router of Tenda, China. There is a security loophole in version 16,03.07.52 of Tenda AC 23,03.52, which stems from a mishandling of the parameter Time in the document/goform/PowerSaveSatet, which could result in a spill out of the buffer zone.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
腾达
Published
2026-01-06
Last Modified
2026-02-24
References
https://github.com/xyh4ck/iot_poc/blob/main/Tenda%20AC23_Buffer_Overflow/Tenda%20AC23_Buffer_Overflow.md https://github.com/xyh4ck/iot_poc/blob/main/Tenda%20AC23_Buffer_Overflow/Tenda%20AC23_Buffer_Overflow.md#poc https://vuldb.com/?ctiid.339683 https://vuldb.com/?id.339683 https://vuldb.com/?submit.731772 https://www.tenda.com.cn/
Share on: