CVE-2024-57582
Published: 16 January 2025
Description
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Security Summary
CVE-2024-57582 is a stack-based buffer overflow vulnerability (CWE-787) affecting the Tenda AC18 router running firmware version V15.03.05.19. The issue resides in the formSetPPTPServer function, where the startIP parameter triggers the overflow due to insufficient bounds checking on user-supplied input.
The vulnerability carries a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), indicating it is exploitable remotely over the network with low complexity, no authentication or user interaction required. Attackers can send a specially crafted request to the affected endpoint, potentially leading to arbitrary code execution, denial of service, or full compromise of the device, granting high impacts on confidentiality, integrity, and availability.
Mitigation details and additional technical analysis are available in the referenced advisory at https://github.com/qijiale/Tenda/tree/main/9. Security practitioners should check for firmware updates from Tenda and apply network segmentation or exposure controls for affected devices until patched.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Stack overflow in the web interface (formSetPPTPServer) of the public-facing Tenda AC18 router enables remote code execution via exploitation of a public-facing application.