Anza2001

**Name of the Vulnerable Software and Affected Versions** Tenda AX1803 version 1.0.0.1 **Description** The issue allows a remote attacker to execute arbitrary code via the `schedStartTime` parameter or the `schedEndTime` parameter in the function `setSchedWifi()`. This enables the attacker to potentially gain control over the system. **Recommendations** For Tenda AX1803 version 1.0.0.1, as a temporary workaround, consider disabling the `setSchedWifi()` function until a patch is available. Restrict access to the parameters `schedStartTime` and `schedEndTime` to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AX1803 version 1.0.0.1 **Description** The issue allows a remote attacker to execute arbitrary code via the `wpapsk crypto` parameter in the `fromSetWirelessRepeat()` function. This enables the attacker to potentially gain control over the system. **Recommendations** For Tenda AX1803 version 1.0.0.1, as a temporary workaround, consider restricting access to the `fromSetWirelessRepeat()` function and avoid using the `wpapsk crypto` parameter until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AX1803 version 1.0.0.1 **Description** The issue allows a remote attacker to execute arbitrary code via the `ssid` parameter in the `form fast setting wifi set` function. This enables the attacker to potentially gain control over the device. **Recommendations** For Tenda AX1803 version 1.0.0.1, as a temporary workaround, consider restricting access to the `form fast setting wifi set` function until a patch is available. Avoid using the `ssid` parameter in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AX1806 version 1.0.0.1 **Description** The issue is related to a stack overflow vulnerability in the `sub 455D4()` function of the Tenda AX1806 router's firmware, which occurs when processing the `wpapsk crypto` parameter. This vulnerability can be exploited by a remote attacker to cause a denial of service. The vulnerability is also related to the `fromSetWirelessRepeat` function. **Recommendations** For Tenda AX1806 version 1.0.0.1, consider disabling the `sub 455D4()` function or restricting access to the `fromSetWirelessRepeat` function as a temporary workaround until a patch is available. Avoid using the `wpapsk crypto` parameter in affected configurations to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AX1806 version 1.0.0.1 **Description** The issue is related to a heap overflow in the `setSchedWifi` function. This occurs because the `src` and `v12` variables are directly obtained from HTTP request parameters `schedStartTime` and `schedEndTime` without checking their size. Exploitation of this issue may allow a remote attacker to cause a denial of service. **Recommendations** For Tenda AX1806 version 1.0.0.1, as a temporary workaround, consider disabling the `setSchedWifi` function until a patch is available. Restrict access to the `schedStartTime` and `schedEndTime` parameters in the affected HTTP endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.