CVE-2024-30629 identifies a stack overflow vulnerability in the Tenda FH1205 router firmware version 2.0.0.7(775). The vulnerability resides in the fromDhcpListClient function, where improper handling of the list1 parameter allows an attacker to overflow the stack. This type of vulnerability (CWE-121) can lead to unpredictable behavior including crashes or reboots, impacting device availability. The CVSS 3.1 vector indicates that the attack requires adjacent network access (AV:A), low attack complexity (AC:L), and low privileges (PR:L), with no user interaction (UI:N). The scope is unchanged (S:U), and the impact is limited to availability (A:H), with no confidentiality or integrity impact. No patches or exploits are currently known, but the flaw could be leveraged for denial-of-service attacks against affected routers. The vulnerability is significant because routers are critical network infrastructure components, and disruption can affect entire networks. The lack of a patch means organizations must rely on mitigating controls until an update is available.

The primary impact of CVE-2024-30629 is on the availability of affected Tenda FH1205 routers. Successful exploitation can cause the device to crash or reboot, resulting in denial of service for users relying on the router for network connectivity. This can disrupt business operations, especially in environments where these routers serve as primary internet gateways or network access points. Although the vulnerability does not compromise confidentiality or integrity, the loss of availability can lead to operational downtime and potential loss of productivity. Since exploitation requires only adjacent network access and low privileges, attackers within the local network or connected via Wi-Fi could trigger the vulnerability. This risk is heightened in poorly segmented networks or public Wi-Fi environments. The absence of known exploits reduces immediate risk but does not eliminate the potential for future attacks once exploit code becomes available.

Organizations should immediately inventory their network devices to identify any Tenda FH1205 routers running firmware version 2.0.0.7(775). Until a vendor patch is released, network administrators should implement strict network segmentation to isolate these routers from untrusted or guest networks, limiting attacker access to the adjacent network. Monitoring network traffic for unusual DHCP-related activity or router crashes can help detect exploitation attempts. Disabling unnecessary services or features related to DHCP client listing, if configurable, may reduce attack surface. Additionally, consider replacing vulnerable routers with models from vendors that provide timely security updates. Organizations should subscribe to Tenda security advisories and apply firmware updates promptly once available. Employing network access controls and strong Wi-Fi security can further reduce the risk of local attackers exploiting this vulnerability.