retr0reg/tenda-ac8v4-rop

retr0reg/tenda-ac8v4-rop

Releases0

Stars6

Exploits for Tenda Ac8v4 stack-based overflow to Remote-Code Execution via Mipsel Ropping (CVE-2023-33669 - CVE-2023-33675)

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-33669 ↗	Jun 2, 2023Friday, 2 June 2023, 20:15	9.8 CRITICAL	—
Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the timeZone parameter in the sub_44db3c function.
CVE-2023-33670 ↗	Jun 2, 2023Friday, 2 June 2023, 20:15	9.8 CRITICAL	—
Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the time parameter in the sub_4a79ec function.
CVE-2023-33671 ↗	Jun 2, 2023Friday, 2 June 2023, 20:15	9.8 CRITICAL	—
Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the deviceId parameter in the saveParentControlInfo function.
CVE-2023-33672 ↗	Jun 2, 2023Friday, 2 June 2023, 20:15	7.5 HIGH	—
Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function.
CVE-2023-33673 ↗	Jun 2, 2023Friday, 2 June 2023, 20:15	9.8 CRITICAL	—
Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the firewallEn parameter in the formSetFirewallCfg function.
CVE-2023-33675 ↗	Jun 2, 2023Friday, 2 June 2023, 20:15	9.8 CRITICAL	—
Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the time parameter in the get_parentControl_list_Info function.