CVE-2023-49912

Name of the Vulnerable Software and Affected Versions Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) version 5.1.0 Build 20220926 Tp-Link EAP115 version 5.0.4 Build 20220216

Description A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality. This issue can be triggered by a specially crafted series of HTTP requests, potentially leading to remote code execution. The vulnerability is specifically related to the overflow that occurs via the profile parameter at offset 0x4224b0 of the httpd binary. An attacker can exploit this vulnerability by making an authenticated HTTP request.

Recommendations For Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) version 5.1.0 Build 20220926, consider disabling the Radio Scheduling functionality until a patch is available. For Tp-Link EAP115 version 5.0.4 Build 20220216, restrict access to the httpd binary to minimize the risk of exploitation. As a temporary workaround, consider restricting the use of the profile parameter in the affected HTTP requests until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.