» 2023 » 8월

CVE-2023-4419

Posted on 2023년 8월 25일2023년 8월 25일 by admin

CVE-2023-4419

The LMS5xx uses hard-coded credentials, which potentially allow low-skilled
unauthorized remote attackers to reconfigure settings and /or disrupt the functionality of the device.

Source: CVE-2023-4419

CVE-2023-4418

Posted on 2023년 8월 25일2023년 8월 25일 by admin

CVE-2023-4418

A remote unprivileged attacker can sent multiple packages to the LMS5xx to disrupt its availability through a TCP SYN-based denial-of-service (DDoS) attack.
By exploiting this vulnerability, an attacker can flood the targeted LMS5xx with a high volume of TCP SYN requests, overwhelming its resources and causing it to become unresponsive or unavailable for legitimate users.

Source: CVE-2023-4418

CVE-2023-31412

Posted on 2023년 8월 25일2023년 8월 25일 by admin

CVE-2023-31412

The LMS5xx uses weak hash generation methods, resulting in the creation of insecure hashs. If an attacker manages to retrieve the hash, it could lead to collision attacks and the potential retrieval of the password.

Source: CVE-2023-31412

CVE-2023-40901

Posted on 2023년 8월 25일2023년 8월 25일 by admin

CVE-2023-40901

Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter macFilterType and parameter deviceList at url /goform/setMacFilterCfg.

Source: CVE-2023-40901

CVE-2023-40898

Posted on 2023년 8월 25일2023년 8월 25일 by admin

CVE-2023-40898

Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter timeZone at /goform/SetSysTimeCfg.

Source: CVE-2023-40898

CVE-2023-40902

Posted on 2023년 8월 25일2023년 8월 25일 by admin

CVE-2023-40902

Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter list and bindnum at /goform/SetIpMacBind.

Source: CVE-2023-40902

CVE-2023-40897

Posted on 2023년 8월 25일2023년 8월 25일 by admin

CVE-2023-40897

Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter mac at /goform/GetParentControlInfo.

Source: CVE-2023-40897

CVE-2023-40899

Posted on 2023년 8월 25일2023년 8월 25일 by admin

CVE-2023-40899

Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter macFilterType and parameter deviceList at /goform/setMacFilterCfg.

Source: CVE-2023-40899

CVE-2023-40904

Posted on 2023년 8월 25일2023년 8월 25일 by admin

CVE-2023-40904

Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter macFilterType and parameter deviceList at /goform/setMacFilterCfg.

Source: CVE-2023-40904

CVE-2023-40900

Posted on 2023년 8월 25일2023년 8월 25일 by admin

CVE-2023-40900

Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter list at /goform/SetNetControlList.

Source: CVE-2023-40900