Wakaka123

**Name of the Vulnerable Software and Affected Versions** Tenda CH22 version 1.0.0.1 **Description** A buffer overflow issue exists in the `formexeCommand` function of the `/goform/exeCommand` file. Manipulation of the `cmdinput` argument can lead to a buffer overflow, potentially allowing for remote exploitation. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda CH22 version 1.0.0.1 **Description** A buffer overflow issue exists in the `formSetSambaConf` function of the `/goform/SetSambaConf` file. The manipulation of the `samba userNameSda` argument can trigger this issue, allowing for remote exploitation. The exploit is publicly available. **Recommendations** Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the `/goform/SetSambaConf` file. Avoid using the `samba userNameSda` argument in the affected function until the issue is resolved.