CVE-2022-40076

Name of the Vulnerable Software and Affected Versions Tenda AC21 version 16.03.08.15

Description The issue is related to a Buffer Overflow that can be triggered via the /bin/httpd endpoint, specifically through the function fromSetWifiGusetBasic.

Recommendations For Tenda AC21 version 16.03.08.15, as a temporary workaround, consider disabling the fromSetWifiGusetBasic function until a patch is available. Restrict access to the /bin/httpd endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.