CVE-2026-41927
Stack-Based Buffer Overflow in WDR201A WiFi Extender
Publication date: 2026-05-04
Last updated on: 2026-05-04
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability exists in the WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02) within the firewall.cgi and makeRequest.cgi binaries. It is a stack-based buffer overflow caused by insufficient length validation in the fgets() function when processing a POST request with a Content-Length header exceeding 512 bytes.
This flaw allows unauthenticated attackers to overwrite the saved return address on the stack, enabling them to execute arbitrary code by using techniques such as return-oriented programming or return-to-libc.
How can this vulnerability impact me? :
Exploitation of this vulnerability can lead to arbitrary code execution on the affected device without requiring authentication.
An attacker could potentially take full control of the WiFi extender, manipulate its behavior, intercept or alter network traffic, or use the device as a foothold to attack other devices on the network.