Tenda AC8v4 stack overflow vulnerability (CVE-2024-57703)
CVE number – CVE-2024-57703
The Tenda AC8v4 V16.03.34.06 firmware has a stack overflow vulnerability in the setSchedWifi function.
The src variable receives the schedStartTime parameter from a POST request and is later assigned to the ptr+2 variable, which is fixed at 25 bytes.
However, since the user can control the input of schedStartTime, the statement strcpy((char *)ptr + 2, src); can cause a buffer overflow.
The user-provided schedStartTime can exceed the capacity of the dest array, triggering this security vulnerability.
Further details – https://github.com/Pr0b1em/IoT/blob/master/Tenda%20AC8v4%20V16.03.34.06.md
I am one of the editors here at www.systemtek.co.uk I am a UK based technology professional, with an interest in computer security and telecoms.