CVE-2023-33669

CRITICAL

Tenda AC8V4.0-V16.03.34.06 - Buffer Overflow

Title source: llm

Description

Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the timeZone parameter in the sub_44db3c function.

Exploits (2)

nomisec WORKING POC 6 stars
by retr0reg · poc
https://github.com/retr0reg/tenda-ac8v4-rop
nomisec WORKING POC 2 stars
by dhammerg · poc
https://github.com/dhammerg/CVE-2023-33669

References (2)

Scores

CVSS v3 9.8
EPSS 0.3091
EPSS Percentile 96.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (1)
tenda/ac8_firmware 16.03.34.06
Published Jun 02, 2023
Tracked Since Feb 18, 2026