CVE-2024-52272

Name of the Vulnerable Software and Affected Versions Tenda AC6V2 versions through 15.03.06.50

Description The issue is a stack-based buffer overflow vulnerability in the fromAdvSetLanip module, specifically with the lanMask argument, allowing buffer overflows. This problem affects Tenda AC6V2 devices, potentially allowing attackers to overflow buffers.

Recommendations For Tenda AC6V2 versions through 15.03.06.50, update to a version later than 15.03.06.50 to resolve the issue. As a temporary workaround, consider restricting access to the fromAdvSetLanip module until a patch is available. Avoid using the lanMask argument in the affected module until the issue is resolved.