Tenda TX9 goform/SetStaticRouteCfg File Buffer Overflow Vulnerability

The Tenda TX9 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in the Tenda TX9 goform/SetStaticRouteCfg file, which originates from the parameter list of the function sub42D03C within the file /goform/SetStaticRouteCfg that fails to correctly validate t...

CVE-2026-2138

A vulnerability was found in Tenda TX9 up to 22.03.02.10multi. Affected is the function sub42D03C of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. The attack can be launched remotely. The exploit has been made public and could be used...

EUVD-2026-5810

A vulnerability was found in Tenda TX9 up to 22.03.02.10multi. Affected is the function sub42D03C of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. The attack can be launched remotely. The exploit has been made public and could be used...

Tenda TX9 安全漏洞

The Tenda TX9 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in the Tenda TX9 goform/SetStaticRouteCfg file, which originates from the parameter list of the function sub42D03C within the file /goform/SetStaticRouteCfg that fails to correctly validate t...

Tenda AC23 sscanf function buffer overflow vulnerability

Tenda AC23 is a dual-band wireless router from Tenda that supports 802.11acWave2 technology with dual-band concurrent transmission rates up to 2033Mbps, including up to 1733Mbps in the 5GHz band, which is suitable for high-bandwidth applications such as 4K video and online live streaming. Tenda...

EUVD-2025-32699

A vulnerability was found in Tenda AC23 up to 16.03.07.52. Affected by this issue is the function sscanf of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and coul...

Tenda AC23 安全漏洞

Tenda AC23 is a dual-band wireless router from Tenda that supports 802.11acWave2 technology with dual-band concurrent transmission rates up to 2033Mbps, including up to 1733Mbps in the 5GHz band, which is suitable for high-bandwidth applications such as 4K video and online live streaming. Tenda...

CVE-2025-8131

A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...

Tenda RX9 Pro和Tenda RX9 安全漏洞

Both the Tenda RX9 Pro and the Tenda RX9 are a wireless router from the Chinese company Tenda. The Tenda RX9 Pro and Tenda RX9 suffer from a buffer overflow vulnerability that originates from the list parameter in the sub42EEE0 function on the /goform/SetStaticRouteCfg page that fails to correctl...

PT-2024-9132 · Tenda · Tenda Rx9 +1

Name of the Vulnerable Software and Affected Versions: Tenda RX9 and RX9 Pro versions 22.03.02.10 through 22.03.02.20 Description: A critical vulnerability has been found, affecting the function sub 42EEE0 of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to a...

PT-2024-28838 · Tenda · Tenda Ax1806

Name of the Vulnerable Software and Affected Versions: Tenda AX1806 version 1.0.0.1 Description: A stack-based buffer overflow issue exists in the /goform/SetStaticRouteCfg endpoint, specifically within the sub 519F4 function. This issue can lead to a buffer overflow on the stack. Recommendations...

Tenda AC10 安全漏洞

The Tenda AC10 is a wireless router from the Chinese company Tenda. The Tenda AC10 suffers from a buffer overflow vulnerability, which originates from the parameter list of the fromSetRouteStatic function in file /goform/SetStaticRouteCfg that fails to correctly validate the length of the input...

CVE-2023-49430

Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetStaticRouteCfg...

PT-2023-31218 · Tenda · Tenda Ax12

Name of the Vulnerable Software and Affected Versions: Tenda AX12 version V22.03.01.46 Description: A stack overflow issue was discovered via the list parameter at the "/goform/SetStaticRouteCfg" API endpoint. Recommendations: For Tenda AX12 version V22.03.01.46, avoid using the list parameter in...

Tenda AC9 缓冲区错误漏洞

Tenda AC9 is a wireless router from Tenda, China. A security vulnerability exists in the Tenda AC9, which is caused by a buffer overflow in the list parameter of /goform/SetStaticRouteCfg...

PT-2023-27971 · Tenda · Tenda Ac9 +1

Name of the Vulnerable Software and Affected Versions: Tenda AC9 version V15.03.06.42 multi Tenda AC5 version V15.03.06.28 Description: A stack overflow issue was discovered via the parameter list at the "/goform/SetStaticRouteCfg" API endpoint. This issue affects the specified versions of Tenda...

Tenda AC8 /goform/SetStaticRouteCfg Buffer Overflow Vulnerability

Tenda AC8 is a dual-band Gigabit wireless router from Tenda, designed for fiber optic homes up to 1000 megabytes, supporting dual-band concurrent transmission rates up to 1167Mbps, equipped with full Gigabit ports 1 WAN port + 3 LAN ports for 100-1000 megabit broadband access. Tenda AC8 suffers...

CVE-2023-40894

Tenda AC8 v4 USAC8V4.0siV16.03.34.06cn was discovered to contain a stack overflow via parameter list at /goform/SetStaticRouteCfg...

Tenda AC8 缓冲区错误漏洞

Tenda AC8 is a dual-band Gigabit wireless router from Tenda, designed for fiber optic homes up to 1000 megabytes, supporting dual-band concurrent transmission rates up to 1167Mbps, equipped with full Gigabit ports 1 WAN port + 3 LAN ports for 100-1000 megabit broadband access. Tenda AC8 suffers...

CVE-2022-27016

There is a stack overflow vulnerability in the SetStaticRouteCfg function in the httpd service of Tenda AC9 15.03.2.21cn...