| Title | Tenda AC9 v1.0/V3.0 V15.03.06.42_multi Stack-based Buffer Overflow |
|---|
| Description | A stack-based buffer overflow vulnerability exists in the Tenda AC9 router. The vulnerability is located in the `formGetRebootTimer` function of the web service component. When processing the configuration items `sys.schedulereboot.start_time` and `sys.schedulereboot.end_time`, the program fails to perform proper bounds checking and directly copies the configuration values into stack buffers via the `GetValue` function. An attacker can tamper with these configuration fields and set them to excessively long strings to trigger a stack overflow, which may cause the web service to crash or continuously restart. In severe cases, this vulnerability could potentially lead to remote code execution.
|
|---|
| Source | ⚠️ https://github.com/glkfc/IoT-Vulnerability/blob/main/Tenda/tenda4.md |
|---|
| User | jfkk (UID 79868) |
|---|
| Submission | 01/31/2026 15:34 (2 months ago) |
|---|
| Moderation | 02/07/2026 18:28 (7 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 344895 [Tenda AC9 15.03.06.42_multi formGetRebootTimer stack-based overflow] |
|---|
| Points | 20 |
|---|