Tenda TX9 Pro SetStaticRouteCfg Vulnerability Details Vendor: Tenda Product: TX9 Pro Version: V22.03.02.10_multi Type: Buffer Overflow Vulnerability Description A vulnerability has been discovered in Tenda TX9 Pro V22.03.02.10_multi. This vulnerability can be triggered through the route . The manipulation of the argument list leads to a buffer overflow, allowing remote attacks. The exploit is public and may be used. Vulnerability Details The function calls . In , line 27 reads a user-provided parameter . The variable is passed to without a length check, potentially overflowing the stack-based buffer . This allows an attacker to execute a denial of service or remote code execution by requesting the page. POC