Lucene search
K

47 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:57 a.m.4 views

CVE-2022-38310

Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain a stack overflow via the list parameter at /goform/SetStaticRouteCfg...

9.8CVSS7.8AI score0.00938EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/12/21 12:0 a.m.3 views

Tenda AC18 安全漏洞

Tenda AC18 is a router from Tenda China. A security vulnerability exists in Tenda AC18 version 15.03.05.05, which originates from an improper handling of the parameter mac in the strcpy function of the file /goform/GetParentControlInfo in the component HTTP Request Handler, which may result in a...

9CVSS9.1AI score0.00636EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.5 views

PT-2025-52552

Name of the Vulnerable Software and Affected Versions Tenda AC18 version 15.03.05.05 Description A flaw exists in the Tenda AC18 router that could allow for remote attacks. The issue is related to the sprintf function within the HTTP Request Handler component, specifically in the file...

9CVSS7.2AI score0.00671EPSS
Exploits1References19
RedhatCVE
RedhatCVE
added 2025/05/22 11:22 p.m.6 views

CVE-2022-38312

Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain a stack overflow via the list parameter at /goform/SetIpMacBind...

9.8CVSS7.2AI score0.00938EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:22 p.m.7 views

CVE-2022-38313

Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain a stack overflow via the time parameter at /goform/saveParentControlInfo...

9.8CVSS7.2AI score0.00938EPSS
Exploits1References1
OSV
OSV
added 2024/09/26 8:15 p.m.3 views

CVE-2024-46628

Tenda G3 Router firmware v15.03.05.05 was discovered to contain a remote code execution RCE vulnerability via the usbPartitionName parameter in the formSetUSBPartitionUmount function...

9.8CVSS6.3AI score0.11348EPSS
Exploits1References1
OSV
OSV
added 2024/05/01 11:15 a.m.3 views

CVE-2024-33835

Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the remoteIp parameter from formSetSafeWanWebMan function...

9.8CVSS5.8AI score0.00817EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/05/01 12:0 a.m.4 views

Tenda AC18 安全漏洞

Tenda AC18 is a wireless router manufactured by Tenda. A stack overflow vulnerability exists in the formSetSafeWanWebMan function in Tenda AC18 version V15.03.05.05, which stems from improper handling of the remoteIp parameter. An attacker can exploit this vulnerability to remotely execute...

9.8CVSS8AI score0.00817EPSS
Exploits1References2
OSV
OSV
added 2024/04/17 4:15 p.m.6 views

CVE-2024-32305

Tenda A18 v15.03.05.05 firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function...

8.8CVSS5.9AI score0.00607EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/05 12:0 a.m.3 views

PT-2024-23662 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: A command injection issue exists, allowing attackers to execute arbitrary commands by constructing cmdinput parameters in the "/goform/exeCommand" API endpoint. Recommendations: For Tenda AC18 versi...

8.8CVSS8.3AI score0.01896EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/03/26 12:0 a.m.4 views

PT-2024-22457 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: The issue is related to a stack overflow vulnerability in the ssid parameter of the form fast setting wifi set function. This vulnerability can be exploited, potentially allowing unauthorized access...

7.5CVSS7.3AI score0.0084EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/03/26 12:0 a.m.3 views

PT-2024-22454 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: The issue concerns a command injection vulnerability. It is located in the deviceName parameter of the formsetUsbUnload function. Recommendations: For Tenda AC18 version 15.03.05.05, consider...

9.8CVSS7.4AI score0.02302EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/03/24 12:0 a.m.3 views

Tenda AC18 操作系统命令注入漏洞

Tenda AC18 is a router from Tenda, China. An OS command injection vulnerability exists in Tenda AC18 version 15.03.05.05, which originates from an OS command injection in the usbName parameter of the formSetSambaConf method on the /goform/setsambacfg page...

9.8CVSS7AI score0.03897EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/03/18 12:0 a.m.5 views

PT-2024-22455 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: The issue is a stack overflow vulnerability located in the firewallEn parameter of the formSetFirewallCfg function. This vulnerability can be exploited, potentially allowing unauthorized access or...

6.5CVSS7.3AI score0.00496EPSS
Exploits1References4
CVE
CVE
added 2024/03/17 10:31 a.m.58 views

CVE-2024-2560

CVE-2024-2560 affects Tenda AC18 firmware 15.03.05.05: the fromSysToolRestoreSet function in /goform/SysToolRestoreSet is susceptible to cross-site request forgery. The vulnerability can be triggered remotely, and the exploit has been publicly disclosed. Vendor response is not documented in the s...

5CVSS4.6AI score0.00414EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2024/03/17 10:15 a.m.4 views

CVE-2024-2559

A vulnerability classified as problematic has been found in Tenda AC18 15.03.05.05. Affected is the function fromSysToolReboot of the file /goform/SysToolReboot. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to t...

6.5CVSS4.8AI score0.00307EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/17 9:31 a.m.14 views

CVE-2024-2559 Tenda AC18 SysToolReboot fromSysToolReboot cross-site request forgery

A vulnerability classified as problematic has been found in Tenda AC18 15.03.05.05. Affected is the function fromSysToolReboot of the file /goform/SysToolReboot. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to t...

5CVSS6.9AI score0.00307EPSS
Exploits0References3
CVE
CVE
added 2024/03/17 9:31 a.m.66 views

CVE-2024-2559

CVE-2024-2559 describes a cross-site request forgery in the SysToolReboot function of the /goform/SysToolReboot path on the Tenda AC18 router with firmware 15.03.05.05. The issue allows remote-triggered CSRF by an attacker and has publicly disclosed exploit information, affecting the Tenda AC18 d...

6.5CVSS4.6AI score0.00307EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/03/17 9:15 a.m.2 views

CVE-2024-2558

A vulnerability was found in Tenda AC18 15.03.05.05. It has been rated as critical. This issue affects the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has...

8.8CVSS6.3AI score0.01278EPSS
Exploits0References3
NVD
NVD
added 2024/03/17 4:15 a.m.29 views

CVE-2024-2547

A vulnerability was found in Tenda AC18 15.03.05.05 and classified as critical. Affected by this issue is the function R7WebsSecurityHandler. The manipulation of the argument password leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the...

9CVSS8.9AI score0.01186EPSS
Exploits0References3
Rows per page
Query Builder