A critical buffer overflow vulnerability in Tenda AC10 firmware versions up to 15.03.06.47 allows remote attackers to gain unauthorized control over the device.

The vulnerability affects the formSetPPTPServer function within the /goform/SetPptpServerCfg file. An unauthenticated attacker can trigger a buffer overflow by sending a request containing malicious startIp or endIp arguments.

With a CVSS score of 8.8, this vulnerability poses a significant risk to the security of the network. Successful exploitation allows for remote code execution, which could lead to unauthorized access to sensitive data and the potential for persistent backdoors within the network infrastructure.

Immediate Action: Update Tenda AC10 devices to the latest firmware version provided by the manufacturer.

Proactive Monitoring: Monitor network logs for suspicious HTTP requests targeting the /goform/SetPptpServerCfg endpoint.

Compensating Controls: Ensure that the router’s management interface is isolated from public-facing networks and requires VPN access or specific management VLANs to access.

Public Exploit Available: true

The vulnerability allows for remote, unauthenticated exploitation, which is a major security concern for any organization relying on Tenda AC10 routers. It is imperative to apply official security updates immediately and ensure the device is not exposed to the public internet.