Vulnerability Details CVE-2023-48194
Vulnerability in Tenda AC8v4 .V16.03.34.09 due to sscanf and the last digit of s8 being overwritten with \x0. After executing set_client_qos, control over the gp register can be obtained.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.9%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2023-48194
-
cpe:2.3:h:tenda:ac8v4:-
-
cpe:2.3:o:tenda:ac8v4_firmware:16.03.34.09