40 matches found
PT-2026-31564
Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.18 Description A stack-based buffer overflow exists in the websGetVar function of the /goform/SysToolChangePwd file. Manipulation of the oldPwd, newPwd, and cfmPwd arguments can trigger this issue. The attack can be...
PT-2026-22745
A buffer overflow vulnerability was discovered in goform/formSetMacFilterCfg in Tenda AC15V1.0 V15.03.05.18 multi...
CVE-2026-24103
A buffer overflow vulnerability was discovered in goform/formSetMacFilterCfg in Tenda AC15V1.0 V15.03.05.18multi...
CVE-2022-37175
Tenda ac15 firmware V15.03.05.18 httpd server has stack buffer overflow in /goform/formWifiBasicSet...
Tenda AC15 formsaveAutoQos function buffer overflow vulnerability
The Tenda AC15 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda AC15 version 15.03.05.18, which originates from the parameter enable in the file /goform/saveAutoQos that fails to correctly validate the length of the input data, and can be...
CVE-2025-11389
A security flaw has been discovered in Tenda AC15 15.03.05.18. Affected is an unknown function of the file /goform/saveAutoQos. Performing a manipulation of the argument enable results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been released to...
EUVD-2025-32706
A vulnerability was found in Tenda AC15 15.03.05.18. The impacted element is an unknown function of the file /goform/SetDDNSCfg of the component POST Parameter Handler. The manipulation of the argument ddnsEn results in stack-based buffer overflow. The attack can be launched remotely. The exploit...
EUVD-2025-32710
A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown function of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used...
CVE-2025-11389 Tenda AC15 saveAutoQos stack-based overflow
A security flaw has been discovered in Tenda AC15 15.03.05.18. Affected is an unknown function of the file /goform/saveAutoQos. Performing a manipulation of the argument enable results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been released to...
CVE-2025-11389
CVE-2025-11389 affects Tenda AC15 firmware 15.03.05.18. The vulnerability is a stack-based buffer overflow in an unknown function within /goform/saveAutoQos triggered by manipulating the enable parameter due to improper input length validation. It enables remote code execution with network attack...
CVE-2025-11388
A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown function of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used...
CVE-2025-11387
A vulnerability was determined in Tenda AC15 15.03.05.18. This affects an unknown function of the file /goform/fastsettingpppoeset. This manipulation of the argument Password causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and may ...
CVE-2025-11388 Tenda AC15 setNotUpgrade stack-based overflow
A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown function of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used...
CVE-2025-11388
CVE-2025-11388 affects Tenda AC15 firmware 15.03.05.18. The vulnerability originates in the /goform/setNotUpgrade handling of the newVersion parameter, where insufficient validation of input length leads to a stack-based buffer overflow. This flaw can be exploited remotely, with a publicly availa...
CVE-2025-11387 Tenda AC15 fast_setting_pppoe_set stack-based overflow
A vulnerability was determined in Tenda AC15 15.03.05.18. This affects an unknown function of the file /goform/fastsettingpppoeset. This manipulation of the argument Password causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and may ...
PT-2025-40978
Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.18 Description A stack-based buffer overflow exists in Tenda AC15 routers. The issue is due to the manipulation of the Password argument within the file '/goform/fast setting pppoe set'. This can be exploited...
PT-2025-40981
Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.18 Description A security flaw exists in Tenda AC15 version 15.03.05.18. The issue is a stack-based buffer overflow resulting from manipulation of the enable argument in an unknown function within the...
CVE-2025-10443
A vulnerability was identified in Tenda AC9 and AC15 15.03.05.14/15.03.05.18. This vulnerability affects the function formexeCommand of the file /goform/exeCommand. Such manipulation of the argument cmdinput leads to buffer overflow. The attack can be executed remotely. The exploit is publicly...
Tenda AC15 安全漏洞
Tenda AC15 is a wireless router from Tenda China. A security vulnerability exists in Tenda AC15 versions 15.03.20multi, 15.03.05.19, and 15.03.05.18, which is caused by a buffer overflow in the PPW parameter of the fromWizardHandle method...
PT-2024-23520 · Tenda · Tenda Ac15
Name of the Vulnerable Software and Affected Versions: Tenda AC15 version 15.03.05.18 Description: The issue is a stack overflow vulnerability in the time parameter from the setSmartPowerManagement function. This vulnerability can be exploited, potentially allowing unauthorized access or control...