| Название | Tenda WH450 V1.0.0.18 Stack-based Buffer Overflow |
|---|
| Описание | A buffer overflow vulnerability has been discovered in the Tenda WH450 Router firmware version V1.0.0.18. The vulnerability exists in the `/goform/onSSIDChange` HTTP request handler and can be exploited remotely by unauthenticated attackers to achieve arbitrary code execution or cause denial of service conditions. The vulnerability is triggered when processing requests containing the following parameters with excessive data lengths: `ssid_index`. |
|---|
| Источник | ⚠️ https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_WH450/onSSIDChange/onSSIDChange.md |
|---|
| Пользователь | z472421519 (UID 91218) |
|---|
| Представление | 14.12.2025 22:40 (6 месяцы назад) |
|---|
| Модерация | 18.12.2025 12:12 (4 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 337370 [Tenda WH450 1.0.0.18 HTTP Request /goform/onSSIDChange ssid_index повреждение памяти] |
|---|
| Баллы | 20 |
|---|