Stack-Based Buffer Overflow Vulnerability in Tenda AX1806 Firmware
CVE-2024-40415
9.8CRITICAL
What is CVE-2024-40415?
A vulnerability exists in the Tenda AX1806 firmware (version 1.0.0.1) within the /goform/SetStaticRouteCfg function, specifically in sub_519F4. This issue is characterized by a stack-based buffer overflow, which can potentially allow an attacker to execute arbitrary code, leading to unauthorized access and significant risks to device functionality and data integrity. Immediate attention is required to safeguard against exploitation.