A critical buffer overflow vulnerability in Tenda AC18 firmware, exploitable via the /goform/AdvSetLanip interface, poses a significant risk of remote compromise.

This vulnerability occurs in the fromadvsetlanip function within the /goform/AdvSetLanip file. An unauthenticated attacker can cause a stack-based buffer overflow by sending a request with a malicious lanMask argument.

With a CVSS score of 8.8, this flaw presents a high risk to business operations. Exploitation could lead to full device compromise, allowing attackers to manipulate network configurations, intercept traffic, or gain a foothold within the corporate network infrastructure.

Immediate Action: Update the affected device firmware to the latest version supplied by Tenda.

Proactive Monitoring: Monitor for unusual traffic directed at the web management interface and look for patterns indicative of buffer overflow attempts.

Compensating Controls: Use network segmentation to ensure the management interface of the router is not accessible from the public internet or untrusted network segments.

Public Exploit Available: true

The vulnerability allows for remote exploitation without authentication, making it a high-priority target for malicious actors. It is strongly recommended that all affected Tenda AC18 devices be updated immediately to the latest secure firmware release.