CVE-2023-45484 in AC10
Summary
by MITRE • 11/29/2023
Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the shareSpeed parameter in the function fromSetWifiGuestBasic.
Be aware that VulDB is the high quality source for vulnerability data.
Analysis
by VulDB Data Team • 02/10/2026
The vulnerability identified as CVE-2023-45484 affects Tenda AC10 wireless router firmware version US_AC10V4.0si_V16.03.10.13_cn and represents a critical stack overflow condition that arises from improper input validation within the router's web interface. This flaw exists within the fromSetWifiGuestBasic function where the shareSpeed parameter is processed without adequate bounds checking or sanitization, creating an exploitable condition that allows remote attackers to manipulate memory layout through crafted HTTP requests.
The technical implementation of this vulnerability stems from a classic buffer overflow scenario where the shareSpeed parameter received from the web interface is directly copied into a fixed-size stack buffer without proper length verification. This allows an attacker to exceed the allocated buffer space and overwrite adjacent memory locations including return addresses and control data structures. The vulnerability is particularly concerning because it operates within the router's administrative web interface, meaning that an unauthenticated remote attacker could potentially execute arbitrary code with the privileges of the web server process, which typically runs with elevated system permissions.
From an operational perspective this vulnerability presents significant risk to network security as it allows for remote code execution without requiring authentication, potentially enabling attackers to gain complete control over the affected router. The impact extends beyond simple privilege escalation since compromised routers can serve as entry points for broader network infiltration, allowing attackers to establish persistent access, redirect traffic, or deploy malicious payloads across the local network. The vulnerability's remote nature means that attackers can exploit it from anywhere on the internet without requiring physical access to the device, making it particularly dangerous for enterprise and home network environments.
The vulnerability aligns with CWE-121 Stack-based Buffer Overflow and represents a clear violation of secure coding practices as outlined in the CWE guidelines for memory safety. From an attack framework perspective, this vulnerability maps to ATT&CK technique T1210 Exploitation of Remote Services and T1072 Software Deployment Tools, as it enables attackers to compromise network infrastructure through web-based exploitation. The affected Tenda AC10 model represents a common consumer-grade device that many organizations continue to deploy without proper security updates, creating widespread exposure across both residential and small business networks.
Mitigation strategies should prioritize immediate firmware updates from Tenda's official sources to address the underlying buffer overflow condition through proper input validation and bounds checking. Network administrators should implement firewall rules to restrict access to the router's web interface from untrusted networks and consider segmenting affected devices on separate network segments. Additionally, continuous monitoring for unusual network traffic patterns and unauthorized configuration changes can help detect exploitation attempts. Organizations should also implement vulnerability management processes that include regular firmware updates, network segmentation, and periodic security assessments to identify similar vulnerabilities in other network infrastructure devices. The vulnerability underscores the importance of secure coding practices and proper input validation in embedded systems, particularly those with network-facing interfaces that are often deployed in unattended environments.