Login Sign Up

CVE-2023-46060

7.5 HIGH
Denial of Service Buffer Overflow

📋 TL;DR

A buffer overflow vulnerability in Tenda AC500 routers allows remote attackers to cause denial of service by sending specially crafted requests to the setVlanInfo component. This affects Tenda AC500 routers running firmware version 2.0.1.9. Attackers can exploit this without authentication to crash the device.

💻 Affected Systems

Products:
  • Tenda AC500
Versions: v2.0.1.9
Operating Systems: Embedded router firmware
Default Config Vulnerable: ⚠️ Yes
Notes: All devices running the affected firmware version are vulnerable in default configuration.

📦 What is this software?

Ac500 Firmware by Tenda

View all CVEs affecting Ac500 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, persistent backdoor installation, and network infiltration.

🟠

Likely Case

Denial of service causing router reboot or crash, disrupting network connectivity for all connected devices.

🟢

If Mitigated

Limited to denial of service with no persistent impact if device auto-recovers after reboot.

🌐 Internet-Facing: HIGH - The vulnerable component is accessible remotely without authentication, making internet-facing devices immediately vulnerable.
🏢 Internal Only: MEDIUM - Internal attackers could exploit this to disrupt network operations, but requires network access.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Public proof-of-concept demonstrates exploitation via simple HTTP POST request. No authentication required.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: Not available

Restart Required: Yes

Instructions:

1. Check Tenda website for firmware updates. 2. Download latest firmware. 3. Access router admin interface. 4. Navigate to firmware upgrade section. 5. Upload and apply new firmware. 6. Reboot router.

🔧 Temporary Workarounds

Block External Access

linux

Configure firewall to block external access to router web interface on port 80/443.

iptables -A INPUT -p tcp --dport 80 -j DROP
iptables -A INPUT -p tcp --dport 443 -j DROP

Disable Remote Management

all

Disable remote management feature in router settings to prevent external exploitation.

🧯 If You Can't Patch

  • Isolate affected routers in separate network segment with strict access controls
  • Implement network monitoring for exploitation attempts and anomalous traffic patterns

🔍 How to Verify

Check if Vulnerable:

Check router firmware version via admin interface. If version is 2.0.1.9, device is vulnerable.

Check Version:

curl -s http://router-ip/goform/getStatus | grep version

Verify Fix Applied:

Verify firmware version has been updated to a version later than 2.0.1.9.

📡 Detection & Monitoring

Log Indicators:

  • Multiple POST requests to /goform/setVlanInfo
  • Router crash/reboot events in system logs
  • Unusual port parameter values in web logs

Network Indicators:

  • HTTP POST requests to /goform/setVlanInfo with malformed port parameter
  • Sudden loss of connectivity to router management interface

SIEM Query:

source="router_logs" AND uri_path="/goform/setVlanInfo" AND method="POST"

📊 Metadata

CVE ID: CVE-2023-46060
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-120
Published: April 17, 2024
Last Updated: April 9, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-46060, you might also want to check these:

CVE-2023-24482 10.0

This CVE describes a critical buffer overflow vulnerability in COMOS software's cache validation ser...

Same vulnerability type (CWE-120)
CVE-2024-22039 10.0

This vulnerability allows unauthenticated remote attackers to execute arbitrary code with root privi...

Same vulnerability type (CWE-120)
CVE-2022-22570 10.0

A buffer overflow vulnerability in UniFi Door Access Reader Lite firmware allows attackers with netw...

Same vulnerability type (CWE-120)