Vulnerability Details CVE-2023-47455
Tenda AX1806 V1.0.0.1 contains a heap overflow vulnerability in setSchedWifi function, in which the src and v12 are directly obtained from http request parameter schedStartTime and schedEndTime without checking their size.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.0%
CVSS Severity
CVSS v3 Score 9.1
References
Products affected by CVE-2023-47455
-
cpe:2.3:h:tenda:ax1806:-
-
cpe:2.3:o:tenda:ax1806_firmware:1.0.0.1