71 matches found
CVE-2026-6137
Tenda F451 affected: 1.0.0.7_cn_svn7958. A stack-based overflow in function fromAdvSetWan (/goform/AdvSetWan) is triggered by manipulating wanmode/PPPOEPassword, enabling remote exploitation. Public PoC/exploitation details exist; remediation guidance in PT-security entry recommends updating to a...
CVE-2026-6015
This CVE concerns the Tenda AC9 device (firmware version 15.03.02.13). The vulnerability affects the function formQuickIndex in the file /goform/QuickIndex of the POST Request Handler. The issue arises from manipulation of the PPPOEPassword argument, causing a stack-based buffer overflow. An atta...
Tenda AC6 goform/QuickIndex file buffer overflow vulnerability
The Tenda AC6 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda AC6 version 15.03.05.16. The vulnerability stems from the parameter PPPOEPassword in the file /goform/QuickIndex that fails to properly validate the length and size of the input data...
Tenda AC6 安全漏洞
The Tenda AC6 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda AC6 version 15.03.05.16. The vulnerability stems from the parameter PPPOEPassword in the file /goform/QuickIndex that fails to properly validate the length and size of the input data...
CVE-2026-4903
CVE-2026-4903 affects the Tenda AC5 (firmware 15.03.06.47). The vulnerability is in the POST /goform/QuickIndex handler function formQuickIndex, where manipulating the PPPOEPassword argument triggers a stack-based buffer overflow. The attack can be mounted remotely, with the exploit published and...
CVE-2026-3678
Technical details about CVE-2026-3678 are not provided in the connected documents. Monitor for updates.
CVE-2022-37815
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the PPPOEPassword parameter in the function formQuickIndex...
EUVD-2025-21255
Malicious code in bioql PyPI...
EUVD-2022-40424
Malicious code in bioql PyPI...
EUVD-2022-48377
Malicious code in bioql PyPI...
PT-2025-34211 · Tenda · Tenda M3
Name of the Vulnerable Software and Affected Versions: Tenda M3 version 1.0.0.12 Description: A flaw has been found in the formQuickIndex function of the /goform/QuickIndex file. Manipulation of the PPPOEPassword argument can lead to a stack-based buffer overflow. The attack can be launched...
CVE-2025-7527
A vulnerability was found in Tenda FH1202 1.2.0.14408. It has been rated as critical. This issue affects the function fromAdvSetWan of the file /goform/AdvSetWan. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit...
CVE-2025-7527
A vulnerability was found in Tenda FH1202 1.2.0.14408. It has been rated as critical. This issue affects the function fromAdvSetWan of the file /goform/AdvSetWan. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit...
CVE-2025-7527 Tenda FH1202 AdvSetWan fromAdvSetWan stack-based overflow
A vulnerability was found in Tenda FH1202 1.2.0.14408. It has been rated as critical. This issue affects the function fromAdvSetWan of the file /goform/AdvSetWan. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit...
CVE-2025-7527 Tenda FH1202 AdvSetWan fromAdvSetWan stack-based overflow
A vulnerability was found in Tenda FH1202 1.2.0.14408. It has been rated as critical. This issue affects the function fromAdvSetWan of the file /goform/AdvSetWan. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit...
CVE-2025-7527
CVE-2025-7527 affects Tenda FH1202 firmware 1.2.0.14(408). The vulnerability is in the function fromAdvSetWan and stems from improper validation of the PPPOEPassword input to the file /goform/AdvSetWan, causing a stack-based buffer overflow. This enables remote exploitation with high impact on co...
CVE-2024-42943
Tenda FH1201 v1.2.0.14 408 was discovered to contain a stack overflow via the PPPOEPassword parameter in the fromAdvSetWan function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...
CVE-2024-33211
Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter in ip/goform/QuickIndex...
CVE-2024-30636
Tenda F1202 v1.2.0.20408 has a stack overflow vulnerability via the PPPOEPassword parameter in the formQuickIndex function...
CVE-2024-41459
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter at ip/goform/QuickIndex...