Tenda AX9 Weak Hash Vulnerability in Firmware Integrity Check

A vulnerability exists in the Tenda AX9 router running firmware version 22.03.01.46. The issue arises in the httpd component, specifically within the image_check function, which is responsible for verifying the integrity of firmware updates. The vulnerability allows for the use of a weak hash, as the integrity check relies on a cyclic redundancy check (CRC) that can be easily bypassed. Attackers can craft a compromised firmware image that matches the CRC value of a legitimate update, thereby evading the integrity verification. This flaw could lead to the installation of malicious firmware on the device, potentially allowing for arbitrary code execution or causing a denial-of-service condition.

Impact

Exploitation of this vulnerability could result in unauthorized firmware updates, leading to arbitrary code execution or a denial-of-service condition on the affected device.