CVE-2024-28535

Name of the Vulnerable Software and Affected Versions Tenda AC18 version 15.03.05.05

Description The issue is a stack overflow vulnerability in the mitInterface parameter of the fromAddressNat function. This vulnerability can be exploited, but details about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited are not provided. The vulnerability is related to the mitInterface parameter and the fromAddressNat function.

Recommendations For Tenda AC18 version 15.03.05.05, consider restricting access to the fromAddressNat function until a patch is available. As a temporary workaround, avoid using the mitInterface parameter in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.