Tenda AC18, a router from Tenda, China, is vulnerable to a buffer overflow vulnerability in version V15.03.05.19. The vulnerability stems from the formWifiWpsOOB function that does not perform a length-size check on incoming data, which can be exploited to cause a denial of service.