CVE-2024-30633 identifies a stack overflow vulnerability in the Tenda FH1205 router firmware version 2.0.0.7(775). The vulnerability arises from improper handling of a security parameter within the formWifiBasicSet function, which is responsible for configuring basic Wi-Fi settings. A stack overflow (CWE-121) occurs when the input to this function exceeds expected bounds, potentially overwriting adjacent memory on the stack. This can cause the device to crash or reboot, resulting in a denial of service (DoS). The vulnerability's attack vector is adjacent network (AV:A), meaning an attacker must have access to the same local network segment or be able to send packets to the device's management interface. No privileges or user interaction are required, making exploitation relatively straightforward if network access is available. The CVSS v3.1 base score is 6.5, reflecting medium severity with no impact on confidentiality or integrity but high impact on availability. There are currently no known exploits in the wild, and no official patches have been released by Tenda at the time of publication. This vulnerability is particularly relevant for environments where Tenda FH1205 routers are deployed without proper network segmentation or access controls. Attackers could leverage this flaw to disrupt network connectivity by crashing the router, impacting business operations or home network availability.

The primary impact of CVE-2024-30633 is denial of service through device crashes or reboots, which can disrupt network availability for affected organizations or individuals. While it does not compromise data confidentiality or integrity, the loss of network connectivity can affect business continuity, especially in environments relying on Tenda FH1205 routers as critical network infrastructure. Exploitation requires network proximity, so organizations with poorly segmented networks or exposed management interfaces are at greater risk. The vulnerability could be leveraged by attackers to cause repeated outages, potentially as part of a larger attack campaign or to facilitate other malicious activities by creating network instability. Given the medium severity, the impact is significant but not catastrophic, primarily affecting availability rather than data security.

1. Monitor Tenda's official channels for firmware updates addressing this vulnerability and apply patches promptly once available. 2. Restrict access to the router's management interface by implementing network segmentation and access control lists (ACLs) to limit exposure to trusted devices only. 3. Disable remote management features if not required to reduce the attack surface. 4. Employ network monitoring to detect unusual traffic patterns or repeated crashes indicative of exploitation attempts. 5. Consider replacing affected devices with models from vendors with stronger security track records if patching is delayed or unavailable. 6. Use strong Wi-Fi security settings and change default credentials to prevent unauthorized network access. 7. Regularly audit network devices for firmware versions and known vulnerabilities to maintain an up-to-date security posture.