AC9V3.0升级软件 V15.03.06.42_multi
https://www.tenda.com.cn/download/detail-2908.html
TThe function "fromSetlpMacBind" contains a stack-based buffer overflow vulnerability. In the function, it reads in a user-provided parameter "list", and the variable is passed to the function without any length check, which may lead to overflow of the stack-based buffer. As a result, by requesting the page, an attacker can easily execute a denial of service attack or remote code execution with carefully crafted overflow data.
Due to legal and policy reasons, we are unable to provide the exploit for this vulnerability at this time.
CVE-2024-25748