CVE-2023-51742 MEDIUM

CVE-2023-51742: Buffer Overflow vulnerability in Skyworth Router

Vendor Hathway
Product Skyworth Router CM5100
Weakness CWE-787
Published January 17, 2024
Last update June 17, 2025

CVSS base score

6.5/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient validation of user supplied input for the Add Downstream Frequency parameter at its web interface. A remote attacker could exploit this vulnerability by supplying specially crafted input to the parameter at the web interface of the vulnerable targeted system. Successful exploitation of this vulnerability could allow the attacker to perform a Denial of Service (DoS) attack on the targeted system.

Key dates

02Disclosure timeline

January 17, 2024 CVE published
June 17, 2025 Record updated