Lucene search
K

40 matches found

Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.4 views

PT-2026-31564

Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.18 Description A stack-based buffer overflow exists in the websGetVar function of the /goform/SysToolChangePwd file. Manipulation of the oldPwd, newPwd, and cfmPwd arguments can trigger this issue. The attack can be...

9CVSS7.6AI score0.00627EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.7 views

PT-2026-22745

A buffer overflow vulnerability was discovered in goform/formSetMacFilterCfg in Tenda AC15V1.0 V15.03.05.18 multi...

6.1AI score0.00425EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/03 12:0 a.m.4 views

CVE-2026-24103

A buffer overflow vulnerability was discovered in goform/formSetMacFilterCfg in Tenda AC15V1.0 V15.03.05.18multi...

6.1AI score0.00425EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:50 a.m.4 views

CVE-2022-37175

Tenda ac15 firmware V15.03.05.18 httpd server has stack buffer overflow in /goform/formWifiBasicSet...

9.8CVSS7.7AI score0.00862EPSS
Exploits0References1
CNVD
CNVD
added 2025/10/13 12:0 a.m.3 views

Tenda AC15 formsaveAutoQos function buffer overflow vulnerability

The Tenda AC15 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda AC15 version 15.03.05.18, which originates from the parameter enable in the file /goform/saveAutoQos that fails to correctly validate the length of the input data, and can be...

9CVSS8.3AI score0.00742EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 12:10 p.m.12 views

CVE-2025-11389

A security flaw has been discovered in Tenda AC15 15.03.05.18. Affected is an unknown function of the file /goform/saveAutoQos. Performing a manipulation of the argument enable results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been released to...

9CVSS8.4AI score0.00742EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:31 p.m.6 views

EUVD-2025-32706

A vulnerability was found in Tenda AC15 15.03.05.18. The impacted element is an unknown function of the file /goform/SetDDNSCfg of the component POST Parameter Handler. The manipulation of the argument ddnsEn results in stack-based buffer overflow. The attack can be launched remotely. The exploit...

9CVSS6.7AI score0.00762EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:31 p.m.7 views

EUVD-2025-32710

A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown function of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used...

9CVSS6.9AI score0.00736EPSS
Exploits1References7
Cvelist
Cvelist
added 2025/10/07 11:32 a.m.6 views

CVE-2025-11389 Tenda AC15 saveAutoQos stack-based overflow

A security flaw has been discovered in Tenda AC15 15.03.05.18. Affected is an unknown function of the file /goform/saveAutoQos. Performing a manipulation of the argument enable results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been released to...

9CVSS0.00742EPSS
Exploits1References5
CVE
CVE
added 2025/10/07 11:32 a.m.15 views

CVE-2025-11389

CVE-2025-11389 affects Tenda AC15 firmware 15.03.05.18. The vulnerability is a stack-based buffer overflow in an unknown function within /goform/saveAutoQos triggered by manipulating the enable parameter due to improper input length validation. It enables remote code execution with network attack...

9CVSS8.5AI score0.00742EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2025/10/07 11:16 a.m.8 views

CVE-2025-11388

A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown function of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used...

9CVSS0.00736EPSS
Exploits1References5
NVD
NVD
added 2025/10/07 11:16 a.m.7 views

CVE-2025-11387

A vulnerability was determined in Tenda AC15 15.03.05.18. This affects an unknown function of the file /goform/fastsettingpppoeset. This manipulation of the argument Password causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and may ...

9CVSS0.00736EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/10/07 11:2 a.m.3 views

CVE-2025-11388 Tenda AC15 setNotUpgrade stack-based overflow

A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown function of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used...

9CVSS7AI score0.00736EPSS
Exploits1References5
CVE
CVE
added 2025/10/07 11:2 a.m.14 views

CVE-2025-11388

CVE-2025-11388 affects Tenda AC15 firmware 15.03.05.18. The vulnerability originates in the /goform/setNotUpgrade handling of the newVersion parameter, where insufficient validation of input length leads to a stack-based buffer overflow. This flaw can be exploited remotely, with a publicly availa...

9CVSS8.7AI score0.00736EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/10/07 10:32 a.m.4 views

CVE-2025-11387 Tenda AC15 fast_setting_pppoe_set stack-based overflow

A vulnerability was determined in Tenda AC15 15.03.05.18. This affects an unknown function of the file /goform/fastsettingpppoeset. This manipulation of the argument Password causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and may ...

9CVSS0.00736EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/10/07 12:0 a.m.7 views

PT-2025-40978

Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.18 Description A stack-based buffer overflow exists in Tenda AC15 routers. The issue is due to the manipulation of the Password argument within the file '/goform/fast setting pppoe set'. This can be exploited...

9CVSS8.9AI score0.00736EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2025/10/07 12:0 a.m.7 views

PT-2025-40981

Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.18 Description A security flaw exists in Tenda AC15 version 15.03.05.18. The issue is a stack-based buffer overflow resulting from manipulation of the enable argument in an unknown function within the...

9CVSS8.9AI score0.00742EPSS
Exploits1References9
OSV
OSV
added 2025/09/15 12:15 p.m.3 views

CVE-2025-10443

A vulnerability was identified in Tenda AC9 and AC15 15.03.05.14/15.03.05.18. This vulnerability affects the function formexeCommand of the file /goform/exeCommand. Such manipulation of the argument cmdinput leads to buffer overflow. The attack can be executed remotely. The exploit is publicly...

8.7CVSS6.4AI score0.03706EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/04/17 12:0 a.m.4 views

Tenda AC15 安全漏洞

Tenda AC15 is a wireless router from Tenda China. A security vulnerability exists in Tenda AC15 versions 15.03.20multi, 15.03.05.19, and 15.03.05.18, which is caused by a buffer overflow in the PPW parameter of the fromWizardHandle method...

8CVSS7.5AI score0.00431EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/03/29 12:0 a.m.4 views

PT-2024-23520 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda AC15 version 15.03.05.18 Description: The issue is a stack overflow vulnerability in the time parameter from the setSmartPowerManagement function. This vulnerability can be exploited, potentially allowing unauthorized access or control...

4.3CVSS7.3AI score0.00357EPSS
Exploits0References6
Rows per page
Query Builder