Guoxb

**Name of the Vulnerable Software and Affected Versions** IP-COM W30AP versions up to 1.0.0.11(1340) **Description** A stack-based buffer overflow exists in the `R7WebsSecurityHandler` function within the POST Request Handler component. This issue is triggered by manipulating the `data` argument sent to the `/goform/wx3auth` API endpoint. The vulnerability allows for remote exploitation. The exploit is publicly available. The vendor was contacted regarding this issue but did not respond. **Recommendations** Versions up to 1.0.0.11(1340) should be updated to a newer, secure version when available. As a temporary workaround, consider restricting access to the `/goform/wx3auth` API endpoint.

**Name of the Vulnerable Software and Affected Versions** Tenda RX9 Pro version 22.03.02.20 **Description** A critical issue affects the function sub 424CE0 of the file /goform/setMacFilterCfg in the component POST Request Handler. The manipulation of the `deviceList` argument leads to a stack-based buffer overflow. This issue can be exploited remotely. **Recommendations** For Tenda RX9 Pro version 22.03.02.20, as a temporary workaround, consider restricting access to the /goform/setMacFilterCfg endpoint until a patch is available. Avoid manipulating the `deviceList` argument in the affected POST Request Handler to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: Tenda RX9 and RX9 Pro version 22.03.02.20 Description: A critical issue has been found, affecting the function `sub 4337EC` of the file `/goform/SetNetControlList`. The manipulation of the `list` argument leads to a stack-based buffer overflow. This can be exploited remotely, potentially allowing an attacker to cause a denial of service by sending a specially crafted POST request to the `/goform/SetNetControlList` endpoint. Recommendations: For Tenda RX9 and RX9 Pro version 22.03.02.20, as a temporary workaround, consider disabling the `sub 4337EC` function until a patch is available. Restrict access to the `/goform/SetNetControlList` endpoint to minimize the risk of exploitation. Avoid using the `list` argument in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Tenda RX9 and RX9 Pro versions 22.03.02.10 through 22.03.02.20 Description: The issue is related to a stack-based buffer overflow in the `sub 42EA38` function, which can be exploited by sending a specially crafted POST request to the `/goform/SetVirtualServerCfg` endpoint. This can allow a remote attacker to cause a denial of service. The manipulation of the `argument list` leads to the buffer overflow. The attack can be launched remotely. Recommendations: For versions 22.03.02.10 through 22.03.02.20, consider disabling the `sub 42EA38` function until a patch is available. Restrict access to the `/goform/SetVirtualServerCfg` endpoint to minimize the risk of exploitation. Avoid using the `argument list` in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Tenda RX9 and RX9 Pro versions 22.03.02.10 through 22.03.02.20 Description: A critical vulnerability has been found, affecting the function `sub 42EEE0` of the file `/goform/SetStaticRouteCfg`. The manipulation of the `argument list` leads to a stack-based buffer overflow. This issue can be exploited remotely by sending a specially crafted POST request, potentially allowing an attacker to cause a denial of service. The exploit has been disclosed publicly. Recommendations: For Tenda RX9 and RX9 Pro versions 22.03.02.10 through 22.03.02.20, consider disabling the `sub 42EEE0` function as a temporary workaround until a patch is available. Restrict access to the `/goform/SetStaticRouteCfg` file to minimize the risk of exploitation. Avoid using the vulnerable function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.