CVE-2024-30590 identifies a stack overflow vulnerability in the Tenda FH1202 router firmware version 1.2.0.14(408). The vulnerability resides specifically in the schedEndTime parameter of the setSchedWifi function, which likely handles scheduling of Wi-Fi operation times. A stack overflow occurs when the input to this parameter exceeds the buffer size allocated on the stack, causing memory corruption. This can lead to a denial of service (DoS) by crashing the device or causing it to reboot unexpectedly. The vulnerability is classified under CWE-121 (Stack-based Buffer Overflow), a common and well-understood software weakness. The CVSS 3.1 vector indicates that exploitation requires an attacker to be on an adjacent network (AV:A), but no privileges (PR:N) or user interaction (UI:N) are needed, making it relatively easier to exploit within the local network environment. The impact is limited to availability (A:H), with no confidentiality (C:N) or integrity (I:N) loss. No known exploits have been reported in the wild, and no official patches or mitigations have been released by Tenda as of the publication date. This vulnerability highlights the importance of secure input validation and memory management in embedded device firmware, especially in consumer-grade networking equipment.

The primary impact of CVE-2024-30590 is a denial of service condition on affected Tenda FH1202 routers. This can disrupt network connectivity for users relying on these devices, potentially causing downtime in home or small office environments. While the vulnerability does not directly compromise confidentiality or integrity, the loss of availability can affect business operations, especially in environments where these routers serve as critical network gateways or Wi-Fi access points. Attackers on the same local or adjacent network segment can exploit this flaw without authentication or user interaction, increasing the risk in shared or public network environments. The absence of known exploits reduces immediate risk, but the lack of patches means the vulnerability remains open to future exploitation. Organizations using these devices should consider the potential for service disruption and plan accordingly, particularly in scenarios where network uptime is critical.

1. Restrict network access to the Tenda FH1202 management interfaces by implementing network segmentation and access control lists (ACLs) to limit exposure to adjacent network attackers. 2. Monitor network traffic for unusual activity targeting the setSchedWifi function or related management endpoints. 3. Disable or restrict remote management features if not required, reducing the attack surface. 4. Regularly check for firmware updates or security advisories from Tenda and apply patches promptly once available. 5. Consider replacing affected devices with models from vendors with stronger security track records if patching is delayed or unavailable. 6. Employ network-level protections such as intrusion detection/prevention systems (IDS/IPS) that can detect anomalous traffic patterns indicative of exploitation attempts. 7. Educate network administrators about this vulnerability to ensure rapid response and mitigation in case of exploitation attempts.