Lucene search
+L

745 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:8 a.m.12 views

CVE-2024-2808

A vulnerability, which was classified as critical, has been found in Tenda AC15 15.03.05.18/15.03.20multi. This issue affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack may be initiate...

9.8CVSS9.6AI score0.01372EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:8 a.m.12 views

CVE-2024-2855

A vulnerability classified as critical was found in Tenda AC15 15.03.05.18/15.03.05.19/15.03.20. Affected by this vulnerability is the function fromSetSysTime of the file /goform/SetSysTimeCfg. The manipulation of the argument time leads to stack-based buffer overflow. The attack can be launched...

9.8CVSS9.7AI score0.01298EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:8 a.m.11 views

CVE-2024-2811

A vulnerability was found in Tenda AC15 15.03.20multi and classified as critical. Affected by this issue is the function formWifiWpsStart of the file /goform/WifiWpsStart. The manipulation of the argument index leads to stack-based buffer overflow. The attack may be launched remotely. The exploit...

9.8CVSS9.5AI score0.01541EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/01/03 12:0 a.m.16 views

PT-2026-22506

Name of the Vulnerable Software and Affected Versions Tenda AC15 versions prior to 15.13.07.14 Description A security issue exists in the TextEditingConversion function of Tenda AC15 routers. The issue is a stack-based buffer overflow that occurs when processing the wpapsk crypto2 4g parameter...

9.8CVSS7.5AI score0.00853EPSS
Exploits1References18
EUVD
EUVD
added 2025/11/12 3:31 p.m.5 views

EUVD-2025-131903

Tenda AC15 v15.03.05.18multi issues an authentication cookie that exposes the account password hash to the client and uses a short, low-entropy suffix as the session identifier. An attacker with network access or the ability to run JS in a victim browser can steal the cookie and replay it to acce...

6.9AI score0.00471EPSS
Exploits1References3
NVD
NVD
added 2025/11/12 3:15 p.m.7 views

CVE-2025-63666

Tenda AC15 v15.03.05.18multi issues an authentication cookie that exposes the account password hash to the client and uses a short, low-entropy suffix as the session identifier. An attacker with network access or the ability to run JS in a victim browser can steal the cookie and replay it to acce...

9.8CVSS0.00471EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/11/12 12:0 a.m.5 views

CVE-2025-63666

Tenda AC15 v15.03.05.18multi issues an authentication cookie that exposes the account password hash to the client and uses a short, low-entropy suffix as the session identifier. An attacker with network access or the ability to run JS in a victim browser can steal the cookie and replay it to acce...

7AI score0.00471EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/11/12 12:0 a.m.5 views

Tenda AC15 安全漏洞

Tenda AC15 is a wireless router from Tenda China. A security vulnerability exists in Tenda AC15 version v15.03.05.18multi, which stems from an authentication cookie that exposes a password hash and uses a low entropy session identifier, which could lead to session hijacking...

9.8CVSS7AI score0.00471EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/11/12 12:0 a.m.8 views

PT-2025-46661

Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.18 multi Description The authentication cookie used by the device exposes the account password hash to the client and utilizes a short, low-entropy suffix as the session identifier. An attacker with network access o...

9.8CVSS7.2AI score0.00471EPSS
Exploits1References5
CVE
CVE
added 2025/11/12 12:0 a.m.28 views

CVE-2025-63666

CVE-2025-63666 affects Tenda AC15 v15.03.05.18_multi. The flaw is that an authentication cookie exposes the account password hash to the client and uses a short, low-entropy session identifier. An attacker with network access or the ability to run JavaScript in a victim’s browser can steal the co...

9.8CVSS7AI score0.00471EPSS
Exploits1References1Affected Software1
GithubExploit
GithubExploit
added 2025/10/23 3:30 p.m.167 views

Exploit for OS Command Injection in Tenda Ac15_Firmware

Tenda-Router-VR-and-Exploit...

10CVSS7.6AI score0.79673EPSS
Exploits2
CNVD
CNVD
added 2025/10/13 12:0 a.m.5 views

Tenda AC15 ddnsEn Parameter Stack Buffer Overflow Vulnerability

Tenda AC15 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in October 2015, which supports 802.11ac protocol and is mainly designed for home network environment. Tenda AC15 has a stack buffer overflow vulnerability, which originates from the parameter ddnsEn in th...

9CVSS8.4AI score0.00762EPSS
Exploits1References1
CNVD
CNVD
added 2025/10/13 12:0 a.m.3 views

Tenda AC15 formsaveAutoQos function buffer overflow vulnerability

The Tenda AC15 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda AC15 version 15.03.05.18, which originates from the parameter enable in the file /goform/saveAutoQos that fails to correctly validate the length of the input data, and can be...

9CVSS8.3AI score0.00742EPSS
Exploits1References1
CNVD
CNVD
added 2025/10/13 12:0 a.m.3 views

Tenda AC15 formfast_setting_pppoe_set function buffer overflow vulnerability

The Tenda AC15 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in the Tenda AC15 formfastsettingpppoeset function, which can be exploited by an attacker to execute arbitrary code on the system or cause a denial of service...

9CVSS8.3AI score0.00736EPSS
Exploits1References1
CNVD
CNVD
added 2025/10/13 12:0 a.m.3 views

Tenda AC15 newVersion Parameter Stack Buffer Overflow Vulnerability

Tenda AC15 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in October 2015, which supports 802.11ac protocol and is mainly designed for home network environment. Tenda AC15 has a stack buffer overflow vulnerability, which originates from the parameter newVersion i...

9CVSS8.4AI score0.00736EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 12:10 p.m.13 views

CVE-2025-11389

A security flaw has been discovered in Tenda AC15 15.03.05.18. Affected is an unknown function of the file /goform/saveAutoQos. Performing a manipulation of the argument enable results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been released to...

9CVSS8.4AI score0.00742EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 11:19 a.m.6 views

CVE-2025-11388

A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown function of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used...

9CVSS7.9AI score0.00736EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 11:19 a.m.7 views

CVE-2025-11387

A vulnerability was determined in Tenda AC15 15.03.05.18. This affects an unknown function of the file /goform/fastsettingpppoeset. This manipulation of the argument Password causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and may ...

9CVSS7.8AI score0.00736EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 10:14 a.m.12 views

CVE-2025-11386

A vulnerability was found in Tenda AC15 15.03.05.18. The impacted element is an unknown function of the file /goform/SetDDNSCfg of the component POST Parameter Handler. The manipulation of the argument ddnsEn results in stack-based buffer overflow. The attack can be launched remotely. The exploit...

9CVSS7AI score0.00762EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:31 p.m.6 views

EUVD-2025-32706

A vulnerability was found in Tenda AC15 15.03.05.18. The impacted element is an unknown function of the file /goform/SetDDNSCfg of the component POST Parameter Handler. The manipulation of the argument ddnsEn results in stack-based buffer overflow. The attack can be launched remotely. The exploit...

9CVSS6.7AI score0.00762EPSS
Exploits1References6
Rows per page
Query Builder