The vulnerability identified as CVE-2024-42946 affects the Tenda FH1201 router running firmware version 1.2.0.14 (408). It is a stack-based buffer overflow (CWE-121) triggered by improper handling of the 'page' parameter in the fromVirtualSer function. When a specially crafted POST request containing malicious input in the page parameter is sent to the device, it causes a stack overflow that leads to a crash, resulting in a Denial of Service (DoS). The vulnerability does not impact confidentiality or integrity but severely affects availability by causing the device to become unresponsive. The attack vector is adjacent network (AV:A), meaning the attacker must be on the same local network or connected via a VPN or similar means. No privileges or user interaction are required, making exploitation relatively straightforward for an attacker with network access. The CVSS v3.1 base score is 6.5, reflecting a medium severity level due to the limited attack vector and impact scope. No patches or mitigations have been officially released at the time of publication, and no active exploitation has been reported. This vulnerability highlights the importance of input validation and secure coding practices in embedded device firmware.

The primary impact of this vulnerability is a Denial of Service condition on affected Tenda FH1201 routers, which can disrupt network connectivity for users relying on these devices. This can affect home users, small businesses, and potentially branch offices that use this router model. The DoS can interrupt internet access, VoIP services, and other network-dependent applications, leading to operational downtime and potential productivity loss. While the vulnerability does not allow for data theft or device takeover, the loss of availability can be critical in environments where continuous network access is essential. Additionally, repeated exploitation attempts could cause prolonged outages or require physical intervention to restore service. Organizations with remote or distributed networks using these routers may face challenges in timely remediation due to the lack of patches and the need for physical access to devices.

Until an official patch is released, organizations should implement network segmentation to isolate Tenda FH1201 devices from untrusted or less secure network segments, limiting exposure to potential attackers. Disable remote management interfaces if enabled, and restrict management access to trusted IP addresses only. Monitor network traffic for unusual POST requests targeting the router’s management interface, which could indicate exploitation attempts. Consider deploying intrusion detection or prevention systems (IDS/IPS) with custom signatures to detect malformed requests exploiting the page parameter. If possible, replace affected devices with models from vendors with active security support. Maintain regular backups of device configurations to facilitate rapid recovery after a DoS event. Stay informed via vendor advisories and security bulletins for patch releases or updated mitigation guidance.