Yhryhryhr_Tutu

**Name of the Vulnerable Software and Affected Versions** TOTOLINK A3300R version 17.0.0cu.557 B20221024 **Description** A flaw exists in TOTOLINK A3300R version 17.0.0cu.557 B20221024 that allows for remote manipulation of the `enable` argument within the `setSyslogCfg` function located in the `/cgi-bin/cstecgi.cgi` file. This manipulation results in a stack-based buffer overflow. The exploit for this issue has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda O3 version 1.0.0.10(2478) **Description** A stack-based buffer overflow exists in the `SetValue`/`GetValue` function within the `/goform/sysAutoReboot` file of Tenda O3. Manipulation of the `enable` argument can trigger this issue, allowing for remote code execution. The exploit for this issue is publicly available. **Recommendations** Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider disabling the `/goform/sysAutoReboot` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Tenda AC7 version 15.03.06.44 **Description** A stack-based buffer overflow exists in Tenda AC7 version 15.03.06.44. The issue is due to the manipulation of the `upnpEn` parameter within the `/goform/SetUpnpCfg` file. This allows for remote exploitation. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC18 version 15.03.05.19 **Description** A stack-based buffer overflow exists in Tenda AC18 version 15.03.05.19. The issue is due to the manipulation of the `mtuvalue` argument within the /goform/WizardHandle file. This can be exploited remotely. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda FH1205 version 2.0.0.7(775) **Description** A critical vulnerability was found in the Tenda FH1205, affecting the `fromVirtualSer` function of the file `/goform/VirtualSer`. The manipulation of the argument page leads to a stack-based buffer overflow. This issue can be exploited remotely. The exploit has been disclosed to the public and may be used. **Recommendations** As a temporary workaround, consider disabling the `fromVirtualSer` function until a patch is available. Restrict access to the `/goform/VirtualSer` file to minimize the risk of exploitation. Avoid using the argument page in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC6 version 15.03.05.16 **Description** A critical issue has been found in the function `fromadvsetlanip` of the file `/goform/AdvSetLanip`. The manipulation of the argument `lanMask` leads to buffer overflow. The attack may be launched remotely. **Recommendations** For Tenda AC6 version 15.03.05.16, as a temporary workaround, consider restricting access to the `/goform/AdvSetLanip` endpoint to minimize the risk of exploitation. Avoid using the `lanMask` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC18 version 15.03.05.05 **Description** A critical vulnerability has been found in the function `formsetreboottimer` of the file `/goform/SetSysAutoRebbotCfg`. The manipulation of the argument `rebootTime` leads to a buffer overflow. It is possible to launch the attack remotely. **Recommendations** For Tenda AC18 version 15.03.05.05, as a temporary workaround, consider disabling the `formsetreboottimer` function until a patch is available. Restrict access to the `/goform/SetSysAutoRebbotCfg` file to minimize the risk of exploitation. Avoid using the `rebootTime` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK A3700R version 9.1.2u.5822 B20200513 **Description** A critical issue affects the `setUPnPCfg` function of the file `/cgi-bin/cstecgi.cgi`, leading to improper access controls. The manipulation can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond. **Recommendations** As a temporary workaround, consider disabling the `setUPnPCfg` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda FH1202 version 1.2.0.14(408) **Description** A critical issue was found in the Web Management Interface of the affected software, specifically in an unknown functionality of the file /goform/AdvSetWrlsafeset. This issue leads to improper access controls and can be exploited remotely. The exploit has been publicly disclosed. **Recommendations** For Tenda FH1202 version 1.2.0.14(408), as a temporary workaround, consider restricting access to the /goform/AdvSetWrlsafeset file until a patch is available. Avoid using the Web Management Interface remotely until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-618 versions 2.02/3.02 D-Link DIR-605L versions 2.02/3.02 **Description** A vulnerability was found in the DDNS Service of the affected devices, specifically in the file /goform/formSetDDNS. This issue leads to improper access controls, allowing for exploitation within the local network. The vulnerability affects products that are no longer supported by the maintainer. **Recommendations** For D-Link DIR-618 versions 2.02/3.02, consider disabling the DDNS Service to minimize the risk of exploitation. For D-Link DIR-605L versions 2.02/3.02, restrict access to the /goform/formSetDDNS endpoint to prevent improper access controls. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-816 A2 version 1.10CNB05 R1B011D88210 **Description** A critical issue has been found in the DHCPD Setting Handler component, specifically affecting an unknown functionality of the file /goform/form2Dhcpd.cgi. This issue leads to improper access controls and can be exploited remotely. The exploit has been disclosed to the public and may be used. **Recommendations** As a temporary workaround, consider restricting access to the /goform/form2Dhcpd.cgi file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC15 version 15.03.05.18 **Description** The issue is related to insufficient authentication of requests executed by the `fromSysToolReboot()` function, accessible through the "/goform/SysToolReboot" endpoint. This can be exploited by a remote attacker to cause a denial of service. The vulnerability is also associated with cross-site request forgery. **Recommendations** For version 15.03.05.18, consider disabling the `fromSysToolReboot()` function as a temporary workaround until a patch is available. Restrict access to the "/goform/SysToolReboot" endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC15 version 15.03.05.18 **Description** A vulnerability has been found in the function `fromSysToolRestoreSet` of the file `/goform/SysToolRestoreSet`, which is related to insufficient authentication of executed requests. This issue can lead to cross-site request forgery and may be exploited remotely, potentially resulting in a denial of service. The exploit has been disclosed to the public. **Recommendations** For Tenda AC15 version 15.03.05.18, as a temporary workaround, consider disabling the `fromSysToolRestoreSet` function until a patch is available. Restrict access to the `/goform/SysToolRestoreSet` endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC15 version 15.03.20 multi **Description** A critical vulnerability has been found in the Tenda AC15 router, affecting the `R7WebsSecurityHandler` function of the `/goform/execCommand` file in the Cookie Handler component. The manipulation of the `password` argument leads to a stack-based buffer overflow. This issue can be exploited remotely, potentially allowing an attacker to impact the confidentiality, integrity, and availability of protected information. **Recommendations** For Tenda AC15 version 15.03.20 multi, as a temporary workaround, consider disabling the `R7WebsSecurityHandler` function until a patch is available. Restrict access to the `/goform/execCommand` endpoint to minimize the risk of exploitation. Avoid using the `password` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.