CRITICAL🇵🇱 Wersja polska

CVE-2024-57703

CVSS 9.8v3.1pub. 2025-01-16upd. 2025-03-17

Tenda AC8v4 V16.03.34.06 has a stack overflow vulnerability. Affected by this vulnerability is the function setSchedWifi of the file /goform/openSchedWifi. The manipulation of the argument schedEndTime leads to stack-based buffer overflow.

🤖 AI Analysis
How it works

The vulnerability exists in the setSchedWifi function handling the /goform/openSchedWifi endpoint in the device firmware. By manipulating the schedEndTime argument, an attacker can provide an excessively long value that exceeds the stack buffer size. This results in overwriting stack memory areas (CWE-787, CWE-120), which can allow arbitrary code execution on the device.

Impact

An unauthenticated attacker can remotely gain full control over the device, which includes breaching confidentiality, integrity, and availability of the system, as well as potentially gaining access to the network to which the router is connected.

Mitigation & patch

Apply patches available from the manufacturer according to the references. As an immediate action to limit risk, it is recommended to restrict access to the device's administrative interface only to trusted IP addresses and disable remote management if not required.

Who is affected

Tenda AC8v4 with firmware version V16.03.34.06

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Tenda Ac8

    HW
    Tenda
    4.0
  • Tenda Ac8 Firmware

    OS
    Tenda
    16.03.34.06
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2025-29100CRITICAL9.8PL ✓ten sam produkt

Buffer Overflow w Tenda AC8 — funkcja fromSetRouteStatic

CVE-2025-25663CRITICAL9.8PL ✓ten sam produkt

Tenda AC8V4 — stack-based buffer overflow w funkcji WifiExtraSet

CVE-2025-25667CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w Tenda AC8V4 — stack overflow w funkcji get_parentControl_list_Info

CVE-2025-25664CRITICAL9.8PL ✓ten sam produkt

Tenda AC8V4 — stack overflow przez parametr shareSpeed (RCE)

CVE-2025-25668CRITICAL9.8PL ✓ten sam produkt

Tenda AC8V4 — stack overflow w parametrze shareSpeed (RCE)