C9Y_57

Name of the Vulnerable Software and Affected Versions: TOTOLINK T10 version 4.1.8cu.5207 Description: A critical issue affects the `setTracerouteCfg` function of the file `/cgi-bin/cstecgi.cgi`, allowing remote attackers to execute arbitrary commands in the underlying operating system due to the manipulation of the `command` argument, leading to os command injection. The exploit has been disclosed publicly, and the vendor was contacted but did not respond. Recommendations: For TOTOLINK T10 version 4.1.8cu.5207, as a temporary workaround, consider disabling the `setTracerouteCfg` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the `command` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Tenda A301 version 15.13.08.12 Description: A critical issue has been found in the function `formWifiBasicSet` of the file `/goform/SetOnlineDevName`, where the manipulation of the argument `devName` leads to a stack-based buffer overflow. This can be exploited remotely by sending a specially crafted POST request, potentially affecting the confidentiality, integrity, and availability of protected information. Recommendations: For Tenda A301 version 15.13.08.12, as a temporary workaround, consider disabling the `formWifiBasicSet` function until a patch is available. Restrict access to the `/goform/SetOnlineDevName` endpoint to minimize the risk of exploitation. Avoid using the parameter `devName` in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.