Cylin

**Name of the Vulnerable Software and Affected Versions** Tenda AC18 versions prior to V15.03.05.19(6318) **Description** The issue is related to a heap overflow in the httpd module when handling the `/goform/saveParentControlInfo` API endpoint, specifically due to the `saveParentControlInfo()` function's handling of the `deviceId` parameter. This can allow a remote attacker to cause a denial of service or execute arbitrary code. **Recommendations** For Tenda AC18 versions prior to V15.03.05.19(6318), as a temporary workaround, consider disabling the `saveParentControlInfo()` function until a patch is available. Restrict access to the `/goform/saveParentControlInfo` API endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC18 version 15.03.05.19(6318) **Description** The issue is related to a stack-based buffer overflow vulnerability in the `form fast setting wifi set()` function of the Tenda AC18 router's firmware. This vulnerability is caused by an out-of-bounds write operation when processing the `ssid` parameter. Exploitation of this issue could allow a remote attacker to cause a denial of service. **Recommendations** For version 15.03.05.19(6318), as a temporary workaround, consider disabling the `form fast setting wifi set()` function until a patch is available. Restrict access to the vulnerable function to minimize the risk of exploitation. Avoid using the `ssid` parameter in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC18 versions prior to V15.03.05.19(6318) **Description** The issue is related to a stack-based buffer overflow vulnerability in the `fromAddressNat()` function of the Tenda AC18 router's firmware. This vulnerability occurs when handling the `entrys` and `mitInterface` parameters, allowing an attacker to potentially cause a denial of service or execute arbitrary code remotely. **Recommendations** For Tenda AC18 versions prior to V15.03.05.19(6318), as a temporary workaround, consider disabling the `fromAddressNat()` function until a patch is available. Restrict access to the vulnerable function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC Series Router version AC18 V15.03.05.19(6318) **Description** The issue is related to a stack-based buffer overflow in the httpd module of the Tenda AC Series Router when handling the /goform/SetFirewallCfg request. This can potentially allow an attacker to impact the confidentiality, integrity, and availability of protected information. **Recommendations** For version AC18 V15.03.05.19(6318), as a temporary workaround, consider restricting access to the /goform/SetFirewallCfg request in the httpd module until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC Series Router version AC18 V15.03.05.19(6318) **Description** The issue is related to a stack-based buffer overflow in the httpd module when handling the "/goform/WifiExtraSet" API endpoint. This can potentially allow an attacker to cause a denial of service. **Recommendations** For Tenda AC Series Router version AC18 V15.03.05.19(6318), consider restricting access to the "/goform/WifiExtraSet" API endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC Series Router AC18 version 15.03.05.19(6318) **Description** The issue is related to a stack-based buffer overflow in the httpd module of the Tenda AC Series Router AC18. This occurs when handling the "/goform/SetClientState" request. Exploitation of this issue may allow an attacker to impact the confidentiality, integrity, and availability of protected information. **Recommendations** For Tenda AC Series Router AC18 version 15.03.05.19(6318), as a temporary workaround, consider restricting access to the "/goform/SetClientState" request until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Artifex MuPDF versions prior to 1.18.0 **Description** The issue is related to a heap-based buffer over-write in the `tiff expand colormap()` function when parsing TIFF files. This allows attackers to cause a denial of service. The exploitation of this issue can be initiated remotely. **Recommendations** For versions prior to 1.18.0, update to version 1.18.0 or later to resolve the issue. As a temporary workaround, consider disabling the `tiff expand colormap()` function until a patch is available.