CVE-2024-2899
CVE-2024-2899 affects Tenda AC7 (v15.03.06.44). The vulnerability resides in the fromSetWirelessRepeat function within /goform/WifiExtraSet, where manipulation of the wpapsk_crypto parameter leads to a stack-based buffer overflow. A remote attacker could exploit this, and public disclosures exist...