Sign-up

ID

VAR-202310-2454


CVE

CVE-2023-46520


DESCRIPTION

TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin was discovered to contain a stack overflow via the function uninstallPluginReqHandle.

Trust: 1.0

sources: NVD: CVE-2023-46520

AFFECTED PRODUCTS

vendor:tp linkmodel:tl-wr886nscope:eqversion:3.0.14

Trust: 1.0

sources: NVD: CVE-2023-46520

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2023-46520
value: CRITICAL

Trust: 1.0

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2023-46520
value: HIGH

Trust: 1.0

nvd@nist.gov: CVE-2023-46520
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.9
version: 3.1

Trust: 1.0

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2023-46520
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: ADJACENT
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.1

Trust: 1.0

sources: NVD: CVE-2023-46520 // NVD: CVE-2023-46520

PROBLEMTYPE DATA

problemtype:CWE-787

Trust: 1.0

sources: NVD: CVE-2023-46520

EXTERNAL IDS

db:NVDid:CVE-2023-46520

Trust: 1.0

sources: NVD: CVE-2023-46520

REFERENCES

url:https://github.com/xyiym/digging/blob/main/tp-link/tl-wr886n/1/1.md

Trust: 1.0

url:https://resource.tp-link.com.cn/pc/doccenter/showdoc?id=1676623713687165

Trust: 1.0

sources: NVD: CVE-2023-46520

SOURCES

db:NVDid:CVE-2023-46520

LAST UPDATE DATE

2024-09-11T22:39:59.094000+00:00


SOURCES UPDATE DATE

db:NVDid:CVE-2023-46520date:2024-09-11T16:35:15.170

SOURCES RELEASE DATE

db:NVDid:CVE-2023-46520date:2023-10-25T18:17:38.053