Primary

Context

Tenda AC9 Stack Overflow Vulnerability in wanSpeed Parameter Allows Remote Code Execution

Vulnerability

A stack overflow vulnerability has been identified in the Tenda AC9 router, specifically in version 1.0 with firmware V15.03.05.14_multi. The issue arises in the wanSpeed parameter of the /goform/AdvSetMacMtuWan endpoint, where improper handling of data can lead to a buffer overflow. This vulnerability allows for remote arbitrary code execution on the affected device.

Impact

Exploitation of this vulnerability allows for remote arbitrary code execution on the affected router.

Reproduction

To reproduce this vulnerability, send a POST request to the /goform/AdvSetMacMtuWan endpoint. Include a crafted wanSpeed parameter with a payload designed to overflow the stack. The overflow can be exploited to execute arbitrary code remotely on the device.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

7.5

exploitability

9.1

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

7.5

exploitability

9.1

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tenda AC9 Stack Overflow Vulnerability in wanSpeed Parameter Allows Remote Code Execution

Vulnerability

Impact

Reproduction

Affected Products

Tenda AC9

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating