PT-2025-52552

Name of the Vulnerable Software and Affected Versions Tenda AC18 version 15.03.05.05 Description A flaw exists in the Tenda AC18 router that could allow for remote attacks. The issue is related to the sprintf function within the HTTP Request Handler component, specifically in the file...

CVE-2022-38312

Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain a stack overflow via the list parameter at /goform/SetIpMacBind...

Tenda AC18 安全漏洞

Tenda AC18 is a wireless router manufactured by Tenda. A stack overflow vulnerability exists in the formSetSafeWanWebMan function in Tenda AC18 version V15.03.05.05, which stems from improper handling of the remoteIp parameter. An attacker can exploit this vulnerability to remotely execute...

PT-2024-23662 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: A command injection issue exists, allowing attackers to execute arbitrary commands by constructing cmdinput parameters in the "/goform/exeCommand" API endpoint. Recommendations: For Tenda AC18 versi...

PT-2024-22457 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: The issue is related to a stack overflow vulnerability in the ssid parameter of the form fast setting wifi set function. This vulnerability can be exploited, potentially allowing unauthorized access...

PT-2024-22454 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: The issue concerns a command injection vulnerability. It is located in the deviceName parameter of the formsetUsbUnload function. Recommendations: For Tenda AC18 version 15.03.05.05, consider...

Tenda AC18 操作系统命令注入漏洞

Tenda AC18 is a router from Tenda, China. An OS command injection vulnerability exists in Tenda AC18 version 15.03.05.05, which originates from an OS command injection in the usbName parameter of the formSetSambaConf method on the /goform/setsambacfg page...

PT-2024-22455 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: The issue is a stack overflow vulnerability located in the firewallEn parameter of the formSetFirewallCfg function. This vulnerability can be exploited, potentially allowing unauthorized access or...

Tenda AC18 Cross-Site Request Forgery Vulnerability

Tenda AC18 is a router from Tenda, China. A cross-site request forgery vulnerability exists in Tenda AC18 version V15.03.05.05, which stems from a cross-site request forgery in the fromSysToolRestoreSet function of the /goform/SysToolRestoreSet file...

Tenda AC18 Cross-Site Request Forgery Vulnerability

Tenda AC18 is a router from Tenda, China. A cross-site request forgery vulnerability exists in Tenda AC18 version V15.03.05.05, which stems from a cross-site request forgery in the SysToolReboot function of the /goform/SysToolReboot file...

Tenda AC18 Security Vulnerability

Tenda AC18 is a router from Tenda, China. A security vulnerability exists in Tenda AC18 version V15.03.05.05, which is caused by a stack-based buffer overflow in the list parameter of the formSetQosBand function of the /goform/SetNetControlList file...

PT-2024-2265 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: A critical issue affects the formSetDeviceName function of the /goform/SetOnlineDevName file, leading to a stack-based buffer overflow when the devName or mac argument is manipulated. This can be...

PT-2024-22453 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: The issue is a stack overflow vulnerability in the mitInterface parameter of the fromAddressNat function. This vulnerability can be exploited, but details about the estimated number of potentially...

PT-2024-2216 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: A vulnerability was found in the function fromSysToolRestoreSet of the file /goform/SysToolRestoreSet. This issue is related to insufficient authentication of executed requests, which can lead to...

PT-2024-2266 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: A critical vulnerability was found in the function setSchedWifi of the file /goform/openSchedWifi. The manipulation of the arguments schedStartTime and schedEndTime leads to a stack-based buffer...

PT-2024-2264 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: A critical issue was found in the function formSetSpeedWan of the file /goform/SetSpeedWan. The manipulation of the argument speed dir leads to a stack-based buffer overflow. This issue can be...

CVE-2022-38314

Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain a stack overflow via the urls parameter at /goform/saveParentControlInfo...

Tenda AC18 缓冲区错误漏洞

The Tenda AC18 is a router from the Chinese company Tenda. A security vulnerability exists in the Tenda AC18 Router version v15.03.05.19 and v15.03.05.05, which originates from a discovery containing a stack overflow via the time parameter of /goform/saveParentControlInfo...

Tenda AC18 缓冲区错误漏洞

The Tenda AC18 is a router from the Chinese company Tenda. A security vulnerability exists in the Tenda AC18 Router version v15.03.05.19 and v15.03.05.05, which originates from a discovery containing a stack overflow via the list parameter of /goform/SetVirtualServerCfg...

PT-2022-24365 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 router versions 15.03.05.05 through 15.03.05.19 Description: A stack overflow issue was discovered, affecting the Tenda AC18 router. The issue occurs via the urls parameter at the "/goform/saveParentControlInfo" API endpoint...