Tenda AC6 命令注入漏洞

Tenda AC6 is a wireless router produced by the Chinese company Tenda. The version 15.03.06.23 of Tenda AC6 has a command injection vulnerability. This vulnerability stems from the function getlogfile in the httpd component’s file/goform, which processes the parameter wan.flag, potentially allowin...

CVE-2022-37809

Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the speeddir parameter in the function formSetSpeedWan...

Tenda AC1206 命令注入漏洞

The Tenda AC1206 is a wireless gigabit router from Tenda China. A command injection vulnerability exists in Tenda AC1206 version 15.03.06.23, which stems from a misuse of the parameter modulename/option/data/switch in the file /goform/BehaviorManager, which could lead to a command injection attac...

EUVD-2025-25876

Malicious code in bioql PyPI...

EUVD-2025-25305

Malicious code in bioql PyPI...

CVE-2025-55495

Tenda AC6 V15.03.06.23multi was discovered to contain a buffer overflow via the list parameter in the fromSetIpMacBind function...

CVE-2025-9523 Tenda AC1206 GetParentControlInfo stack-based overflow

A vulnerability was detected in Tenda AC1206 15.03.06.23. Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument mac results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is now public an...

CVE-2025-9523 Tenda AC1206 GetParentControlInfo stack-based overflow

A vulnerability was detected in Tenda AC1206 15.03.06.23. Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument mac results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is now public an...

PT-2025-34859

Name of the Vulnerable Software and Affected Versions: Tenda AC1206 version 15.03.06.23 Description: A stack-based buffer overflow vulnerability exists in the GetParentControlInfo function of the /goform/GetParentControlInfo file. Manipulation of the mac argument can trigger the vulnerability,...

PT-2025-34930 · Tenda · Tenda Ac6

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 15.03.06.23 multi Description: The Tenda AC6 device contains a buffer overflow issue through the list parameter within the fromSetIpMacBind function. Recommendations: At the moment, there is no information about a newer...

CVE-2025-55498

Tenda AC6 V15.03.06.23multi was discovered to contain a buffer overflow via the time parameter in the fromSetSysTime function...

PT-2025-34067 · Tenda · Tenda Ac6

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 15.03.06.23 multi Description: The Tenda AC6 version 15.03.06.23 multi contains a buffer overflow via the time parameter in the fromSetSysTime function. Recommendations: At the moment, there is no information about a newer...

PT-2025-34058 · Tenda · Tenda Ac6

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 15.03.06.23 multi Description: The device contains a buffer overflow through the ntpServer parameter in the fromSetSysTime function. Recommendations: At the moment, there is no information about a newer version that contains...

PT-2024-7247 · Tenda · Tenda Ac1206

Name of the Vulnerable Software and Affected Versions: Tenda AC1206 versions up to 15.03.06.23 Description: The issue is related to the ate iwpriv set and ate ifconfig set functions in the /goform/ate file of the Tenda AC1206 router's firmware. It allows for command injection due to inadequate da...

Tenda AC1206 缓冲区错误漏洞

The Tenda AC1206 is a Wireless King Gigabit Router from Tenda, China. A security vulnerability exists in the Tenda AC1206 version V15.03.06.23, which is caused by a buffer overflow in the page parameter of the fromSetIpBind method...

Tenda AC1206 缓冲区错误漏洞

Tenda AC1206 is a wireless through-the-wall king gigabit router from Tenda, China. A security vulnerability exists in the Tenda AC1206 version V15.03.06.23, which is caused by a buffer overflow in the deviceId parameter of the saveParentControlInfo method...

CVE-2022-42171

Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/saveParentControlInfo...

Tenda AC10 缓冲区错误漏洞

The Tenda AC10 is a wireless router from China-based Tenda. A security vulnerability exists in Tenda AC10 firmware version V15.03.06.23, which originates from a stack buffer overflow in its /goform/formWifiWpsStart component...

PT-2022-26292 · Tenda · Tenda Ac10

Name of the Vulnerable Software and Affected Versions: Tenda AC10 version 15.03.06.23 Description: The issue is related to a stack overflow vulnerability. This vulnerability can be exploited via the API endpoint "/goform/formSetSpeedWan". Recommendations: For Tenda AC10 version 15.03.06.23, as a...

PT-2022-26294 · Tenda · Tenda Ac10

Name of the Vulnerable Software and Affected Versions: Tenda AC10 version 15.03.06.23 Description: The issue is related to a stack overflow vulnerability. This vulnerability can be exploited via the API endpoint "/goform/fromSetIpMacBind". Recommendations: For Tenda AC10 version 15.03.06.23, as a...