Tenda AC6 命令注入漏洞

Tenda AC6 is a wireless router produced by the Chinese company Tenda. The version 15.03.06.23 of Tenda AC6 has a command injection vulnerability. This vulnerability stems from the function getlogfile in the httpd component’s file/goform, which processes the parameter wan.flag, potentially allowin...

CVE-2022-37809

Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the speeddir parameter in the function formSetSpeedWan...

Tenda AC1206 命令注入漏洞

The Tenda AC1206 is a wireless gigabit router from Tenda China. A command injection vulnerability exists in Tenda AC1206 version 15.03.06.23, which stems from a misuse of the parameter modulename/option/data/switch in the file /goform/BehaviorManager, which could lead to a command injection attac...

EUVD-2025-25876

Malicious code in bioql PyPI...

EUVD-2025-25305

Malicious code in bioql PyPI...

CVE-2025-55495

Tenda AC6 V15.03.06.23multi was discovered to contain a buffer overflow via the list parameter in the fromSetIpMacBind function...

CVE-2025-9523 Tenda AC1206 GetParentControlInfo stack-based overflow

A vulnerability was detected in Tenda AC1206 15.03.06.23. Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument mac results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is now public an...

CVE-2025-9523 Tenda AC1206 GetParentControlInfo stack-based overflow

A vulnerability was detected in Tenda AC1206 15.03.06.23. Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument mac results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is now public an...

PT-2025-34930 · Tenda · Tenda Ac6

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 15.03.06.23 multi Description: The Tenda AC6 device contains a buffer overflow issue through the list parameter within the fromSetIpMacBind function. Recommendations: At the moment, there is no information about a newer...

PT-2025-34859

Name of the Vulnerable Software and Affected Versions: Tenda AC1206 version 15.03.06.23 Description: A stack-based buffer overflow vulnerability exists in the GetParentControlInfo function of the /goform/GetParentControlInfo file. Manipulation of the mac argument can trigger the vulnerability,...

CVE-2025-55498

Tenda AC6 V15.03.06.23multi was discovered to contain a buffer overflow via the time parameter in the fromSetSysTime function...

PT-2025-34066 · Tenda · Tenda Ac6

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version V15.03.06.23 multi Description: The Tenda AC6 version V15.03.06.23 multi is susceptible to a buffer overflow issue within the formSetCfm function. Recommendations: At the moment, there is no information about a newer version...

CVE-2025-55503

Tenda AC6 V15.03.06.23multi has a stack overflow vulnerability via the deviceName parameter in the saveParentControlInfo function...

PT-2025-34067 · Tenda · Tenda Ac6

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 15.03.06.23 multi Description: The Tenda AC6 version 15.03.06.23 multi contains a buffer overflow via the time parameter in the fromSetSysTime function. Recommendations: At the moment, there is no information about a newer...

PT-2025-34058 · Tenda · Tenda Ac6

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 15.03.06.23 multi Description: The device contains a buffer overflow through the ntpServer parameter in the fromSetSysTime function. Recommendations: At the moment, there is no information about a newer version that contains...

CVE-2022-37812

Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the firewallEn parameter in the function formSetFirewallCfg...

CVE-2025-4299

A vulnerability was found in Tenda AC1206 up to 15.03.06.23. It has been rated as critical. This issue affects the function setSchedWifi of the file /goform/openSchedWifi. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public...

PT-2024-7247 · Tenda · Tenda Ac1206

Name of the Vulnerable Software and Affected Versions: Tenda AC1206 versions up to 15.03.06.23 Description: The issue is related to the ate iwpriv set and ate ifconfig set functions in the /goform/ate file of the Tenda AC1206 router's firmware. It allows for command injection due to inadequate da...

CVE-2023-37712

Tenda AC1206 V15.03.06.23, F1202 V1.2.0.20408, and FH1202 V1.2.0.20408 were discovered to contain a stack overflow in the page parameter in the fromSetIpBind function...

Tenda AC1206 缓冲区错误漏洞

The Tenda AC1206 is a Wireless King Gigabit Router from Tenda, China. A security vulnerability exists in the Tenda AC1206 version V15.03.06.23, which is caused by a buffer overflow in the page parameter of the fromSetIpBind method...