Tenda AC8 formSetDeviceName stack-based overflow
CVE-2023-4744
9.8CRITICAL
What is CVE-2023-4744?
A vulnerability exists in Tenda AC8 routers, specifically in the function responsible for setting device names. This flaw allows for a stack-based buffer overflow, which can be triggered remotely by an attacker. The exploit, already disclosed to the public, poses significant security risks as it could potentially allow unauthorized access or execution of arbitrary code on the affected devices.
Affected Version(s)
AC8 16.03.34.06_cn_TDC01