CVE-2023-38933 Information

Description

Tenda AC6 V2.0 V15.03.06.23 AC7 V1.0 V15.03.06.44 F1203 V2.0.1.6 AC5 V1.0 V15.03.06.28 FH1203 V2.0.1.6 and AC9 V3.0 V15.03.06.42_multi and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the deviceId parameter in the formSetClientState function.

Reference

https://github.com/FirmRec/IoT-Vulns/blob/main/tenda/formSetClientState/README.md