CVE-2024-32312 identifies a stack overflow vulnerability in the Tenda F1203 router firmware version 2.0.1.6. The flaw exists in the handling of the adslPwd parameter within the formWanParameterSetting function. A stack overflow occurs when the input to this parameter exceeds expected bounds, leading to memory corruption. This vulnerability is classified under CWE-121 (Stack-based Buffer Overflow). The vulnerability can be triggered remotely over the network (Attack Vector: Adjacent Network) without requiring privileges (PR:N), but it does require user interaction (UI:R), such as the victim visiting a malicious page or interacting with crafted input. The impact is limited to availability (A:H), meaning the attacker can cause a denial of service by crashing or destabilizing the router, but confidentiality and integrity are not affected. The CVSS v3.1 base score is 5.7, reflecting medium severity. No patches or known exploits are currently available, indicating the vulnerability is newly disclosed. The affected device is a consumer-grade router commonly used in home and small office environments, making it a potential target for attackers aiming to disrupt internet connectivity or cause network outages. The lack of authentication requirement for exploitation increases risk, but the need for user interaction somewhat limits automated exploitation. The vulnerability's presence in firmware suggests that a firmware update is the primary remediation once released.

The primary impact of CVE-2024-32312 is on the availability of affected Tenda F1203 routers. Successful exploitation can cause the device to crash or reboot, resulting in denial of service and loss of internet connectivity for end users. This can disrupt business operations for small offices relying on these routers and degrade user experience in home environments. Although confidentiality and integrity are not directly compromised, the loss of availability can indirectly affect organizational productivity and communications. The vulnerability could be leveraged in targeted attacks or as part of a larger campaign to disrupt internet access in specific regions. Since the router is often deployed in consumer and small business networks, the scale of impact depends on the prevalence of this model in different markets. The requirement for user interaction reduces the likelihood of widespread automated exploitation but does not eliminate risk from social engineering or targeted phishing campaigns. No known exploits in the wild currently reduce immediate risk but also highlight the importance of proactive mitigation.

1. Restrict remote access to the router’s management interface, especially from untrusted networks, to reduce exposure to remote exploitation. 2. Disable any unnecessary remote management features or services on the Tenda F1203 device. 3. Monitor network traffic and device logs for unusual activity or repeated crashes that could indicate exploitation attempts. 4. Educate users about the risks of interacting with untrusted links or content that could trigger the vulnerability. 5. Implement network segmentation to isolate critical systems from consumer-grade routers to limit potential impact. 6. Regularly check for firmware updates from Tenda and apply patches promptly once released to remediate the vulnerability. 7. Consider replacing affected devices with models from vendors with a stronger security track record if timely patches are not available. 8. Employ intrusion detection/prevention systems that can detect anomalous behavior related to router crashes or malformed packets targeting WAN parameters.