CVE-2024-2710 – This critical vulnerability in Tenda AC10U rout... (How to Fix)

Q: What is the severity of CVE-2024-2710?

CVE-2024-2710 has a CVSS score of 8.8 (HIGH). This critical vulnerability in Tenda AC10U routers allows remote attackers to execute arbitrary code via a stack-based buffer overflow in the setSchedWifi function. Attackers can exploit this without authentication to potentially take full control of affected devices. All users of Tenda AC10U routers with firmware version 15.03.06.49 are affected.

📋 TL;DR

This critical vulnerability in Tenda AC10U routers allows remote attackers to execute arbitrary code via a stack-based buffer overflow in the setSchedWifi function. Attackers can exploit this without authentication to potentially take full control of affected devices. All users of Tenda AC10U routers with firmware version 15.03.06.49 are affected.

💻 Affected Systems

Products:

Tenda AC10U

Versions: 15.03.06.49

Operating Systems: Embedded Linux (router firmware)

Default Config Vulnerable: ⚠️ Yes

Notes: All devices running this specific firmware version are vulnerable by default.

📦 What is this software?

Ac10u Firmware by Tenda

View all CVEs affecting Ac10u Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, creation of persistent backdoors, network pivoting, and data exfiltration.

🟠

Likely Case

Remote code execution allowing attackers to modify router settings, intercept network traffic, or join devices to botnets.

🟢

If Mitigated

Limited impact if devices are behind firewalls with strict inbound filtering and network segmentation.

🌐 Internet-Facing: HIGH - The vulnerability is remotely exploitable and public exploits exist.

🏢 Internal Only: HIGH - Even internally, the vulnerability can be exploited by attackers who gain network access.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Public exploit details are available on GitHub, making exploitation straightforward for attackers.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: Yes

Instructions:

No official patch available. Contact Tenda support for firmware updates and monitor their website for security advisories.

🔧 Temporary Workarounds

Disable remote administration

all

Disable remote management/administration features to prevent external exploitation.

Access router admin panel → Advanced Settings → System Tools → Remote Management → Disable

Network segmentation

all

Isolate vulnerable routers in separate network segments with strict firewall rules.

🧯 If You Can't Patch

Replace vulnerable devices with patched or different models
Implement strict network access controls and monitor for exploitation attempts

🔍 How to Verify

Check if Vulnerable:

Check router firmware version via admin panel: Login → Advanced Settings → System Status → Firmware Version

Check Version:

Check via web interface or attempt to access /goform/openSchedWifi with monitoring

Verify Fix Applied:

Verify firmware version is no longer 15.03.06.49 after any update

📡 Detection & Monitoring

Log Indicators:

Unusual POST requests to /goform/openSchedWifi
Abnormal process execution on router
Configuration changes without authorization

Network Indicators:

Exploit traffic patterns to router management interface
Unexpected outbound connections from router

SIEM Query:

source_ip=router_ip AND (url_path="/goform/openSchedWifi" OR post_data CONTAINS "schedStartTime")

📊 Metadata

CVE ID: CVE-2024-2710

CVSS v3 Score: 8.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-121

Published: March 20, 2024

Last Updated: December 12, 2024

🔗 References

https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC10U/v1.V15.03.06.49/more/setSchedWifi_start.md Exploit
https://vuldb.com/?ctiid.257461 Permissions Required,VDB Entry
https://vuldb.com/?id.257461 Third Party Advisory,VDB Entry
https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC10U/v1.V15.03.06.49/more/setSchedWifi_start.md Exploit
https://vuldb.com/?ctiid.257461 Permissions Required,VDB Entry
https://vuldb.com/?id.257461 Third Party Advisory,VDB Entry

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-2710, you might also want to check these: