CVE-2022-30473

Name of the Vulnerable Software and Affected Versions Tenda AC18 version 15.03.05.19(6318)

Description The issue is related to a stack-based buffer overflow vulnerability in the form fast setting wifi set() function of the Tenda AC18 router's firmware. This vulnerability is caused by an out-of-bounds write operation when processing the ssid parameter. Exploitation of this issue could allow a remote attacker to cause a denial of service.

Recommendations For version 15.03.05.19(6318), as a temporary workaround, consider disabling the form fast setting wifi set() function until a patch is available. Restrict access to the vulnerable function to minimize the risk of exploitation. Avoid using the ssid parameter in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.