CVE-2023-46371

Vulnerability

A stack overflow vulnerability exists in TP-Link TL-WDR7660 firmware version 2.0.30 and TL-WR886N firmware version 2.0.12. The flaw resides in the upgradeInfoJsonToBin function, which processes a crafted JSON input without proper bounds checking, leading to a stack buffer overflow [1].

Exploitation

An unauthenticated attacker with network access to the affected device can send a specially crafted HTTP request that triggers the vulnerable upgradeInfoJsonToBin function. The attacker does not require prior authentication or user interaction; the overflow occurs during normal processing of the firmware upgrade information input [1].

Impact

Successful exploitation allows the attacker to corrupt the stack memory, potentially leading to arbitrary code execution with root privileges on the device. This would give the attacker full control over the router, enabling traffic interception, configuration changes, or further propagation into the network [1].

Mitigation

TP-Link has not released a fixed firmware version as of the publication date. Users should monitor TP-Link's official support channels for updates. No workarounds have been disclosed; until a patch is available, restrict network access to the router's management interface to trusted hosts only [1].