CVE-2024-46451

Name of the Vulnerable Software and Affected Versions TOTOLINK AC1200 T8 version 4.1.5cu.861 B20230220

Description The issue is a buffer overflow vulnerability in the setWiFiAclRules function via the desc parameter. This vulnerability can be exploited, but details about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited are not provided.

Recommendations For TOTOLINK AC1200 T8 version 4.1.5cu.861 B20230220, as a temporary workaround, consider disabling the setWiFiAclRules function until a patch is available. Restrict access to the desc parameter in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.