ID

VAR-202310-2454


CVE

CVE-2023-46520


DESCRIPTION

TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin was discovered to contain a stack overflow via the function uninstallPluginReqHandle.

Trust: 1.0

sources: NVD: CVE-2023-46520

AFFECTED PRODUCTS

vendor:tp linkmodel:tl-wr886nscope:eqversion:3.0.14

Trust: 1.0

sources: NVD: CVE-2023-46520

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD: CVE-2023-46520
value: CRITICAL

Trust: 1.0

NVD:
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.9
version: 3.1

Trust: 1.0

sources: NVD: CVE-2023-46520

PROBLEMTYPE DATA

problemtype:CWE-787

Trust: 1.0

sources: NVD: CVE-2023-46520

CONFIGURATIONS

sources: NVD: CVE-2023-46520

EXTERNAL IDS

db:NVDid:CVE-2023-46520

Trust: 1.0

sources: NVD: CVE-2023-46520

REFERENCES

url:https://github.com/xyiym/digging/blob/main/tp-link/tl-wr886n/1/1.md

Trust: 1.0

url:https://resource.tp-link.com.cn/pc/doccenter/showdoc?id=1676623713687165

Trust: 1.0

sources: NVD: CVE-2023-46520

SOURCES

db:NVDid:CVE-2023-46520

LAST UPDATE DATE

2023-12-18T13:31:16.460000+00:00


SOURCES UPDATE DATE

db:NVDid:CVE-2023-46520date:2023-10-26T22:18:36.137

SOURCES RELEASE DATE

db:NVDid:CVE-2023-46520date:2023-10-25T18:17:38.053