Lucene search
K

29 matches found

RedhatCVE
RedhatCVE
added 2025/09/21 12:11 a.m.17 views

CVE-2025-57296

Tenda AC6 router firmware 15.03.05.19 contains a command injection vulnerability in the formSetIptv function, which processes requests to the /goform/SetIPTVCfg web interface. When handling the list and vlanId parameters, the subADBC0 helper function concatenates these user-supplied values into...

6.5CVSS8.2AI score0.03316EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/08/20 1:9 p.m.8 views

CVE-2025-27129

An authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can send packets to trigger this vulnerability...

9.8CVSS0.01985EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/24 12:0 a.m.2 views

Tenda AC6 Buffer Overflow Vulnerability (CNVD-2025-15721)

Tenda AC6 is a dual-band wireless router from Tenda. Tenda AC6 suffers from a buffer overflow vulnerability that originates from the failure of the schedStartTime and schedEndTime parameters in the /goform/openSchedWifi endpoints to correctly validate the length size of the input data, and no...

7.5CVSS7.5AI score0.00551EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/06/13 12:0 a.m.7 views

The vulnerability of the formSetRebootTimer() function (/goform/SetRebootTimer) in the Tenda AC6 router’s microprogramming software allows a intruder to trigger a service failure.

The vulnerability of the formSetRebootTimer function /goform/SetRebootTimer in the Tenda AC6 router’s microprogrammed software is related to the issue of the operation exceeding the buffer boundaries in memory when processing the rebootTime parameter. Exploiting this vulnerability could allow a...

9CVSS7.9AI score0.00801EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/13 12:0 a.m.6 views

The vulnerability of the formSetPPTPUserList() function (/goform/setPptpUserList) in the Tenda AC6 router software allows a hacker to trigger a service failure.

The vulnerability of the formSetPPTPUserList function /goform/setPptpUserList of the Tenda AC6 router’s microprogramming software is related to the copying of buffers without checking the size of the input data when processing the list parameter. Exploiting this vulnerability could allow an...

9CVSS7.7AI score0.00804EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2025/06/02 12:0 a.m.4 views

Tenda AC6 安全漏洞

The Tenda AC6 is a wireless router from the Chinese company Tenda. The Tenda AC6 suffers from a buffer overflow vulnerability that originates from the parameter time in the setSmartPowerManagement function failing to properly validate the length of the input data, which can be exploited by an...

6.5CVSS8AI score0.00238EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.7 views

The vulnerability of the formWifiWpsOOB function in the microprogrammed routing software of Tenda AC6 allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the formWifiWpsOOB function in the microprogrammed routing software Tenda AC6 is related to data writing beyond the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause a service failure...

10CVSS6.3AI score0.00455EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/25 12:0 a.m.7 views

The vulnerability of the formSetSpeedWan() function in the Tenda AC6 router’s microprogramming software allows a hacker to induce a service failure.

The vulnerability of the formSetSpeedWan function in the Tenda AC6 router’s microprogramming software is related to the execution of operations outside the buffer boundaries. Exploiting this vulnerability could allow a malicious actor to cause service failures...

10CVSS5.9AI score0.00455EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2025/03/20 12:0 a.m.6 views

Tenda AC6 安全漏洞

The Tenda AC6 is a wireless router from the Chinese company Tenda. The Tenda AC6 suffers from a buffer overflow vulnerability that originates from the timeZone parameter in the /goform/fastsettingwifiset file that fails to properly validate the length of the input data, which can be exploited by ...

7.5CVSS8.1AI score0.00447EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/02/25 12:0 a.m.7 views

The vulnerability of the sub_452A4() function in the Tenda AC6 router’s microprogramming system, which allows a hacker to cause a service failure.

The vulnerability of the sub452A4 function in the Tenda AC6 router’s microprogramming system is related to the operation of writing data outside the buffer in memory when processing the callback parameter. Exploiting this vulnerability can allow an attacker to cause a service failure...

6.5CVSS5.7AI score0.0028EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/25 12:0 a.m.7 views

The vulnerability of the formexeCommand() function in the Tenda AC6 router’s microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the formexeCommand function in the Tenda AC6 router’s microprogramming software is related to incorrect code generation during the processing of the cmdinput parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

6.5CVSS6AI score0.00469EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2025/01/16 10:15 p.m.3 views

CVE-2024-46450

Incorrect access control in Tenda AC1200 Smart Dual-Band WiFi Router Model AC6 v2.0 Firmware v15.03.06.50 allows attackers to bypass authentication via a crafted web request...

8.1CVSS5.9AI score0.00349EPSS
Exploits0References1
CNVD
CNVD
added 2024/12/06 12:0 a.m.1 views

Tenda AC6 setDoublePppoeConfig module buffer overflow vulnerability

Tenda AC6 is a wireless router from Shenzhen Tenda Technology Co. A buffer overflow vulnerability exists in Tenda AC6. The vulnerability stems from the guestipcheck function in the setDoublePppoeConfig module not properly validating input. No detailed vulnerability details are provided at this ti...

9.8CVSS7.5AI score0.00437EPSS
Exploits0References1
CNVD
CNVD
added 2024/02/26 12:0 a.m.2 views

AC6 Stack Buffer Overflow Vulnerability in Shenzhen Jixiang Tengda Technology Co.

Shenzhen Jixiang Tenda Technology Co., Ltd AC6 is a dual-band wireless router from Tenda Tenda, supporting IPv4 and IPv6 protocols, adopting 802.11ac/n wireless standard and providing 1167Mbps wireless transmission rate. Ltd. AC6 suffers from a stack buffer overflow vulnerability that originates...

8.1CVSS7.9AI score0.0055EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/02/21 12:0 a.m.5 views

Tenda AC6 安全漏洞

Shenzhen Jixiang Tenda Technology Co., Ltd AC6 is a dual-band wireless router from Tenda Tenda, supporting IPv4 and IPv6 protocols, adopting 802.11ac/n wireless standard and providing 1167Mbps wireless transmission rate. Ltd. AC6 suffers from a stack buffer overflow vulnerability that originates...

8.1CVSS7.7AI score0.0055EPSS
Exploits1References2
CNVD
CNVD
added 2023/09/01 12:0 a.m.4 views

Tenda AC6 initIpAddrInfo function buffer overflow vulnerability

Tenda AC6 is a dual-band wireless router from Tenda that supports 2.4GHz and 5GHz bands with a maximum transmission rate of 1167Mbps and dual-band all-in-one functionality. The Tenda AC6 suffers from a buffer overflow vulnerability, which originates from the initIpAddrInfo function failing to...

9.8CVSS8.4AI score0.0057EPSS
Exploits0References1
OSV
OSV
added 2023/08/30 5:15 p.m.4 views

CVE-2023-40841

Tenda AC6 USAC6V1.0BRV15.03.05.16multiTD01.bin is vulnerable to Buffer Overflow via function "addwhitenode,"...

9.8CVSS5.8AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/08/30 5:15 p.m.6 views

CVE-2023-40838

Tenda AC6 USAC6V1.0BRV15.03.05.16multiTD01.bin function 'sub3A1D0' contains a command execution vulnerability...

9.8CVSS6AI score0.0105EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/08/30 12:0 a.m.4 views

Tenda AC6 缓冲区错误漏洞

Tenda AC6 is a dual-band wireless router from Tenda that supports 2.4GHz and 5GHz bands with a maximum transmission rate of 1167Mbps and dual-band all-in-one functionality. The Tenda AC6 suffers from a buffer overflow vulnerability, which originates from the sub7D858 function failing to correctly...

9.8CVSS8.2AI score0.0057EPSS
Exploits0References2
CNVD
CNVD
added 2023/08/24 12:0 a.m.4 views

Shenzhen Jixiang Tengda Technology Co., Ltd AC6 fgets function buffer overflow vulnerability

Shenzhen Jixiang Tenda Technology Co., Ltd AC6 is a dual-band wireless router from Tenda Tenda, supporting IPv4 and IPv6 protocols, adopting 802.11ac/n wireless standard and providing 1167Mbps wireless transmission rate. Ltd. AC6 has a buffer overflow vulnerability, the vulnerability stems from t...

9.8CVSS8.4AI score0.00639EPSS
Exploits0References1
Rows per page
Query Builder