Primary

Context

Tenda AC9 Router Stack Overflow Vulnerability in WifiWpsStart Form Leading to Remote Code Execution

Vulnerability

A stack overflow vulnerability has been identified in the Tenda AC9 router, version 1.0, running firmware V15.03.05.14_multi. The issue resides in the WifiWpsStart form, where the index parameter from POST requests is improperly handled. The vulnerability allows for remote arbitrary code execution.

Impact

Exploitation of this vulnerability could lead to unauthorized remote code execution on the affected router.

Reproduction

To reproduce this vulnerability, send a POST request to the /goform/WifiWpsStart endpoint. Include an excessively long index parameter in the request. The lack of length validation in the firmware allows the long index to overflow the stack, potentially leading to arbitrary code execution.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

7.5

exploitability

9.1

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

7.5

exploitability

9.1

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tenda AC9 Router Stack Overflow Vulnerability in WifiWpsStart Form Leading to Remote Code Execution

Vulnerability

Impact

Reproduction

Affected Products

Tenda AC9

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating