CVE-2026-4567 Tenda A15 UploadCfg stack-based overflow

A vulnerability has been found in Tenda A15 15.13.07.13. The impacted element is the function UploadCfg of the file /cgi-bin/UploadCfg. The manipulation of the argument File leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public an...

Tenda A15 安全漏洞

The Tenda A15 is a WiFi extender produced by the Chinese company Tenda. Version 15.13.07.13 of the Tenda A15 contains a security vulnerability. This vulnerability stems from improper handling of the File parameter in the UploadCfg function located at /file/cgi-bin/UploadCfg. It may lead to a...

CVE-2026-3400

CVE-2026-3400 affects Tenda AC15 routers prior to 15.13.07.14, impacting the function in /goform/TextEditingConversion. The issue is a stack-based buffer overflow triggered by the wpapsk_crypto2_4g parameter, enabling remote exploitation. Multiple sources confirm an available exploit and remote a...

Tenda A18 安全漏洞

The Tenda A18 is a AC1200 dual-band Wi-Fi repeater produced by the Chinese company Tenda. Version 15.13.07.13 of the Tenda A18 contains a security vulnerability. This vulnerability stems from incorrect handling of the parameter “boundary” in the file /cgi-bin/UploadCfg, which may lead to a stack...

Tenda A18 安全漏洞

The Tenda A18 is a AC1200 dual-band Wi-Fi repeater produced by the Chinese company Tenda. Version 15.13.07.13 of the Tenda A18 contains a security vulnerability. This vulnerability stems from the parsemacfilterrule function in the /goform/setBlackRule file, where an stack buffer overflow occurs d...

EUVD-2025-37476

A vulnerability was found in Tenda A15 15.13.07.13. Affected is the function fromSetWirelessRepeat of the file /goform/openNetworkGateway. The manipulation of the argument wpapskcrypto24g results in buffer overflow. The attack can be launched remotely. The exploit has been made public and could b...

CVE-2025-8979 Tenda AC15 Firmware Update check_fw data authenticity

A vulnerability was identified in Tenda AC15 15.13.07.13. Affected by this vulnerability is the function checkfwtype/splitfireware/checkfw of the component Firmware Update Handler. The manipulation leads to insufficient verification of data authenticity. The attack can be launched remotely. The...

Tenda A15 安全漏洞

Tenda A15 is a WiFi extender from Tenda China. A buffer overflow vulnerability exists in Tenda A15 version 15.13.07.13, which originates from the deviceList parameter of the /goform/setBlackRule file failing to correctly validate the length of the input data, and can be exploited by a remote...

Tenda A15 安全漏洞

Tenda A15 is a WiFi extender from Tenda China. A buffer overflow vulnerability exists in Tenda A15 version 15.13.07.13, which originates from the devName parameter of the /goform/SetOnlineDevName file failing to correctly validate the length of the input data, and can be exploited by a remote...

Tenda A15 安全漏洞

Tenda A15 is a WiFi extender from Tenda China. A buffer overflow vulnerability exists in Tenda A15 version 15.13.07.13, which originates from the mac parameter of the /goform/SetOnlineDevName file failing to correctly validate the length of the input data, and can be exploited by a remote attacke...

CVE-2022-47127

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlPwd parameter at /goform/WifiBasicSet...

CVE-2022-47126

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlEn parameter at /goform/WifiBasicSet...

PT-2022-28021 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda A15 version 15.13.07.13 Description: A stack overflow issue was discovered via the ssid parameter at the "/goform/WifiBasicSet" API endpoint. Recommendations: For Tenda A15 version 15.13.07.13, avoid using the ssid parameter in the...

PT-2022-28020 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda A15 version 15.13.07.13 Description: A stack overflow issue was discovered, which can be triggered via the wepkey1 parameter at the "/goform/WifiBasicSet" API endpoint. Recommendations: For Tenda A15 version 15.13.07.13, avoid using the...

PT-2022-28025 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda A15 version 15.13.07.13 Description: A stack overflow issue was discovered via the wepkey3 parameter at the "/goform/WifiBasicSet" API endpoint. Recommendations: For Tenda A15 version 15.13.07.13, avoid using the wepkey3 parameter in th...

PT-2022-28026 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda A15 version 15.13.07.13 Description: A stack overflow issue was discovered via the wepkey4 parameter at the "/goform/WifiBasicSet" API endpoint. This issue affects the Tenda A15 device. Recommendations: For Tenda A15 version 15.13.07.13...