CVE-2026-24105

An issue was discovered in goform/formsetUsbUnload in Tenda AC15V1.0 V15.03.05.18multi. The value of v1 was not checked, potentially leading to a command injection vulnerability if injected into doSystemCmd...

CVE-2026-24105

An issue was discovered in goform/formsetUsbUnload in Tenda AC15V1.0 V15.03.05.18multi. The value of v1 was not checked, potentially leading to a command injection vulnerability if injected into doSystemCmd...

Tenda AC15 安全漏洞

The Tenda AC15 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda AC15 version 15.03.05.18, which originates from the parameter enable in the file /goform/saveAutoQos that fails to correctly validate the length of the input data, and can be...

CVE-2023-39673

The CVE-2023-39673 entry concerns Tenda AC15 router with version V1.0BR_V15.03.05.18_multi_TD01, where a buffer overflow is triggered by FUN_00010e34(). The NVD entry cites CVSS 3.1 impact: Confidentiality HIGH, Integrity HIGH, Availability HIGH, with NETWORK attack vector, no privileges, no user...

CVE-2022-44169

Tenda AC15 V15.03.05.18 is vulnerable to Buffer Overflow via function formSetVirtualSer...

Buffer overflow

Tenda AC15 V15.03.05.18 is avulnerable to Buffer Overflow via function formSetPPTPServer...

Buffer overflow

Tenda AC15 V15.03.05.18 is vulnerable to Buffer Overflow via function formSetVirtualSer...

Buffer overflow

Tenda AC15 V15.03.05.18 is vulnerable to Buffer Overflow via function fromSetRouteStatic...

CVE-2022-44168

CVE-2022-44168 affects Tenda AC15, specifically version V15.03.05.18. The vulnerability is a buffer overflow in the fromSetRouteStatic function, due to missing/insufficient input length checks on data processed by that routine. Reports in multiple sources (CNVD, CNNVD, NVD, Red Hat, etc.) describ...

CVE-2022-44169

CVE-2022-44169 affects Tenda AC15 firmware version V15.03.05.18. The vulnerability is a buffer overflow in the formSetVirtualSer function, with the impact described as Availability impact (CVE metrics: CVSS v3.1 base score 7.5, HIGH) and no confidentiality or integrity impact. Exploitability is n...

CVE-2022-44167

CVE-2022-44167 concerns the Tenda AC15 router, firmware version 15.03.05.18, with a reported buffer overflow in the formSetPPTPServer function due to unchecked input length. This can lead to a denial-of-service condition (availability impact) per connected records, with CVSSv3.1: AV:N/AC:L/PR:N/U...

CVE-2022-43259

Tenda AC15 V15.03.05.18 was discovered to contain a stack overflow via the timeZone parameter in the formfastsettingwifiset function...

CVE-2022-43259

Tenda AC15 V15.03.05.18 was discovered to contain a stack overflow via the timeZone parameter in the formfastsettingwifiset function...

CVE-2022-43259

CVE-2022-43259 affects Tenda AC15 (v15.03.05.18). The vulnerability is a stack overflow in the timeZone parameter of the form_fast_setting_wifi_set function, caused by lack of input length validation. Impact per sources is denial of service and potential partial impact on availability. Public exp...

Stack overflow

Tenda ac15 firmware V15.03.05.18 httpd server has stack buffer overflow in /goform/formWifiBasicSet...

CVE-2022-37175

Tenda ac15 firmware V15.03.05.18 httpd server has stack buffer overflow in /goform/formWifiBasicSet...

CVE-2022-37175

The CVE-2022-37175 entry concerns Tenda AC15 devices with firmware V15.03.05.18. The httpd server has a stack buffer overflow in /goform/formWifiBasicSet due to boundary handling issues, enabling a potential remote impact. Public records describe this vulnerability as a potential arbitrary-code e...