CVE-2021-27707

Buffer Overflow in Tenda G1 and G3 routers with firmware v15.11.0.17(9502)_CN allows remote attackers to execute arbitrary code via a crafted action/»portMappingIndex «request. This occurs because the «formDelPortMapping» function directly passes the parameter «portMappingIndex» to strcpy without limit.