CVE-2024-42974 is a stack-based buffer overflow vulnerability identified in the Tenda FH1206 router firmware version v02.03.01.35. The vulnerability arises from improper handling of the 'page' parameter within the fromwebExcptypemanFilter function. Specifically, the function fails to properly validate or limit the size of input data, allowing an attacker to overflow the stack by sending a specially crafted POST request. This overflow can overwrite the stack frame, leading to a crash of the affected process and resulting in a Denial of Service (DoS) condition. The vulnerability does not require any privileges or user interaction to exploit, making it accessible remotely by unauthenticated attackers over the network. The CVSS 3.1 base score of 6.5 reflects the medium severity, primarily due to the impact on availability without affecting confidentiality or integrity. No known public exploits or patches are currently available, indicating that the vulnerability is newly disclosed. The underlying weakness corresponds to CWE-121 (Stack-based Buffer Overflow), a common and well-understood software flaw. This vulnerability could be leveraged by attackers to disrupt network connectivity or degrade service availability for users relying on the affected Tenda router model.

The primary impact of CVE-2024-42974 is the potential for Denial of Service (DoS) attacks against networks using the Tenda FH1206 router with the vulnerable firmware. Successful exploitation can cause the router's web management interface or related services to crash, leading to temporary loss of network management capabilities or even broader network outages if the device becomes unresponsive. This can disrupt business operations, especially for small to medium enterprises or home users relying on this device for internet connectivity. Since the vulnerability does not compromise confidentiality or integrity, data theft or manipulation is unlikely. However, the ease of remote exploitation without authentication increases the risk of widespread disruption. Organizations with critical reliance on these routers for network access or management could face operational downtime, impacting productivity and potentially leading to financial losses or reputational damage. The absence of known exploits in the wild currently limits immediate risk, but the vulnerability remains a concern until patched.

1. Monitor network traffic for unusual or malformed POST requests targeting the router's web interface, especially those containing suspicious 'page' parameter values. 2. Restrict access to the router's management interface by limiting exposure to untrusted networks; use firewall rules to allow management only from trusted IP addresses or internal networks. 3. Disable remote management features if not required to reduce the attack surface. 4. Regularly check for firmware updates from Tenda and apply them promptly once a patch addressing this vulnerability is released. 5. Implement network segmentation to isolate critical devices and reduce the impact of a compromised router. 6. Consider deploying intrusion detection/prevention systems (IDS/IPS) capable of identifying and blocking exploitation attempts targeting this vulnerability. 7. Maintain backups of router configurations to facilitate rapid recovery in case of a DoS event. 8. Engage with Tenda support channels to obtain information on patch timelines and interim mitigation advice.