CVE-2022-24018

Name of the Vulnerable Software and Affected Versions TCL LinkHub Mesh Wi-Fi MS1G 00 01.00 14

Description A buffer overflow vulnerability exists in the GetValue functionality. A specially-crafted configuration value can lead to a buffer overflow. An attacker can modify a configuration value to trigger this vulnerability. This issue represents all occurrences of the buffer overflow vulnerability within the multiWAN binary.

Recommendations For TCL LinkHub Mesh Wi-Fi MS1G 00 01.00 14, as a temporary workaround, consider restricting access to the GetValue functionality until a patch is available. Avoid using specially-crafted configuration values in the affected binary to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.