A critical buffer overflow vulnerability in Tenda AC18 firmware, triggered via the /goform/SetSysAutoRebbotCfg interface, poses a significant risk of remote compromise.

This vulnerability affects the formsetreboottimer function within the /goform/SetSysAutoRebbotCfg file. An unauthenticated attacker can trigger a stack-based buffer overflow by manipulating the rebootTime argument in a crafted request.

The CVSS score of 8.8 reflects the high potential for system instability or remote code execution. Successful exploitation could allow an attacker to disrupt critical network services or gain administrative control over the router, leading to potential data exfiltration or internal network pivot points.

Immediate Action: Apply the latest firmware updates provided by the vendor to address this vulnerability.

Proactive Monitoring: Review system logs for unexpected reboots or anomalous error messages associated with the web management interface.

Compensating Controls: Implement a Web Application Firewall (WAF) or ingress filtering to block suspicious requests directed at the /goform/SetSysAutoRebbotCfg endpoint.

Public Exploit Available: true

This vulnerability presents a high risk due to the ease of triggering the buffer overflow remotely. Organizations using Tenda AC18 routers should prioritize firmware verification and apply security patches immediately to prevent unauthorized access or system denial-of-service.