Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

57 matches found

RedhatCVE
RedhatCVEadded 2025/12/31 3:56 a.m.3 views

CVE-2025-15218

A weakness has been identified in Tenda AC10U 15.03.06.48/15.03.06.49. Affected by this vulnerability is the function fromadvsetlanip of the file /goform/AdvSetLanip of the component POST Request Parameter Handler. Executing a manipulation of the argument lanMask can lead to buffer overflow. The...

9CVSS8.8AI score0.00254EPSS
Exploits1References1
NVD
NVDadded 2025/12/30 4:15 a.m.1 views

CVE-2025-15218

A weakness has been identified in Tenda AC10U 15.03.06.48/15.03.06.49. Affected by this vulnerability is the function fromadvsetlanip of the file /goform/AdvSetLanip of the component POST Request Parameter Handler. Executing a manipulation of the argument lanMask can lead to buffer overflow. The...

9CVSS0.00254EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2025/12/30 3:32 a.m.2 views

CVE-2025-15218

A weakness has been identified in Tenda AC10U 15.03.06.48/15.03.06.49. Affected by this vulnerability is the function fromadvsetlanip of the file /goform/AdvSetLanip of the component POST Request Parameter Handler. Executing a manipulation of the argument lanMask can lead to buffer overflow. The...

9CVSS6.2AI score0.00254EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2025/12/30 3:32 a.m.26 views

CVE-2025-15218 Tenda AC10U POST Request Parameter AdvSetLanip fromadvsetlanip buffer overflow

A weakness has been identified in Tenda AC10U 15.03.06.48/15.03.06.49. Affected by this vulnerability is the function fromadvsetlanip of the file /goform/AdvSetLanip of the component POST Request Parameter Handler. Executing a manipulation of the argument lanMask can lead to buffer overflow. The...

9CVSS0.00254EPSS
Exploits1References5
CVE
CVEadded 2025/12/30 3:32 a.m.10 views

CVE-2025-15218

The CVE-2025-15218 issue affects Tenda AC10U firmware versions 15.03.06.48–15.03.06.49. The vulnerability lies in the POST Request Parameter Handler, specifically the fromadvsetlanip function in /goform/AdvSetLanip, where manipulating the lanMask argument can trigger a buffer overflow. The impact...

9CVSS8.8AI score0.00254EPSS
Exploits1References5Affected Software1
CNNVD
CNNVDadded 2025/12/30 12:0 a.m.3 views

Tenda AC10 安全漏洞

Tenda AC10 is a wireless router from Tenda China. A security vulnerability exists in Tenda AC10 version 15.03.06.48 and 15.03.06.49, which stems from an incorrect operation of the parameter lanMask in the file /goform/AdvSetLanip, which could result in a buffer overflow...

9CVSS9.1AI score0.00254EPSS
Exploits1References5
CNVD
CNVDadded 2025/10/31 12:0 a.m.1 views

Tenda O3 formAdvSetLanip function buffer overflow vulnerability

Tenda O3 is an outdoor wireless bridge from Tenda, China. Tenda O3 1.0.0.10 version exists a buffer overflow vulnerability, the vulnerability stems from the file /goform/AdvSetLanip function SetValue/GetValue parameter lanIp fails to correctly validate the length of the input data size, the...

9.8CVSS8.3AI score0.00408EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/10/28 4:9 a.m.1 views

CVE-2025-12210

A vulnerability was identified in Tenda O3 1.0.0.102478. Affected by this vulnerability is the function SetValue/GetValue of the file /goform/AdvSetLanip. The manipulation of the argument lanIp leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit is...

9.8CVSS7.2AI score0.00408EPSS
Exploits1References1
NVD
NVDadded 2025/10/27 3:15 a.m.2 views

CVE-2025-12210

A vulnerability was identified in Tenda O3 1.0.0.102478. Affected by this vulnerability is the function SetValue/GetValue of the file /goform/AdvSetLanip. The manipulation of the argument lanIp leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit is...

9.8CVSS0.00408EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2025/10/27 3:2 a.m.2 views

CVE-2025-12210 Tenda O3 AdvSetLanip GetValue stack-based overflow

A vulnerability was identified in Tenda O3 1.0.0.102478. Affected by this vulnerability is the function SetValue/GetValue of the file /goform/AdvSetLanip. The manipulation of the argument lanIp leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit is...

9CVSS7.1AI score0.00408EPSS
Exploits1References5
Cvelist
Cvelistadded 2025/10/27 3:2 a.m.3 views

CVE-2025-12210 Tenda O3 AdvSetLanip GetValue stack-based overflow

A vulnerability was identified in Tenda O3 1.0.0.102478. Affected by this vulnerability is the function SetValue/GetValue of the file /goform/AdvSetLanip. The manipulation of the argument lanIp leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit is...

9CVSS0.00408EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/10/27 12:0 a.m.1 views

Tenda O3 安全漏洞

Tenda O3 is an outdoor wireless bridge from Tenda, China. Tenda O3 1.0.0.10 version exists a buffer overflow vulnerability, the vulnerability stems from the file /goform/AdvSetLanip function SetValue/GetValue parameter lanIp fails to correctly validate the length of the input data size, the...

9.8CVSS8.2AI score0.00408EPSS
Exploits1References5
CNVD
CNVDadded 2025/10/15 12:0 a.m.2 views

Tenda AC7 Command Injection Vulnerability

Tenda AC7 is a wireless router from Tenda, a Chinese company. A command injection vulnerability exists in Tenda AC7 version 15.03.06.44, which originates from the failure to properly filter the parameter lanIp in the file /goform/AdvSetLanip to construct command special characters, commands, etc...

8.8CVSS8.1AI score0.00993EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/10/10 1:32 a.m.2 views

CVE-2025-11523

A vulnerability was detected in Tenda AC7 15.03.06.44. This vulnerability affects unknown code of the file /goform/AdvSetLanip. The manipulation of the argument lanIp results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used...

8.8CVSS7.2AI score0.00993EPSS
Exploits1References1
OSV
OSVadded 2025/10/09 2:15 a.m.2 views

CVE-2025-11523

A vulnerability was detected in Tenda AC7 15.03.06.44. This vulnerability affects unknown code of the file /goform/AdvSetLanip. The manipulation of the argument lanIp results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used...

8.8CVSS5.8AI score
Exploits0References5
NVD
NVDadded 2025/10/09 2:15 a.m.2 views

CVE-2025-11523

A vulnerability was detected in Tenda AC7 15.03.06.44. This vulnerability affects unknown code of the file /goform/AdvSetLanip. The manipulation of the argument lanIp results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used...

8.8CVSS0.00993EPSS
Exploits1References5
CVE
CVEadded 2025/10/09 1:2 a.m.5 views

CVE-2025-11523

The CVE-2025-11523 entry concerns Tenda AC7 15.03.06.44. The affected component is the AdvSetLanip handler, with the vulnerability arising from improper filtering/handling of the lanIp parameter in /goform/AdvSetLanip, enabling remote command injection. Public exploits exist and can be used to ac...

8.8CVSS7.1AI score0.00993EPSS
Exploits1References5Affected Software1
EUVD
EUVDadded 2025/10/09 1:2 a.m.3 views

EUVD-2025-33259

A vulnerability was detected in Tenda AC7 15.03.06.44. This vulnerability affects unknown code of the file /goform/AdvSetLanip. The manipulation of the argument lanIp results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used...

8.8CVSS6.9AI score0.00993EPSS
Exploits1References7
Cvelist
Cvelistadded 2025/10/09 1:2 a.m.6 views

CVE-2025-11523 Tenda AC7 AdvSetLanip command injection

A vulnerability was detected in Tenda AC7 15.03.06.44. This vulnerability affects unknown code of the file /goform/AdvSetLanip. The manipulation of the argument lanIp results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used...

6.5CVSS0.00993EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2025/10/09 1:2 a.m.2 views

CVE-2025-11523 Tenda AC7 AdvSetLanip command injection

A vulnerability was detected in Tenda AC7 15.03.06.44. This vulnerability affects unknown code of the file /goform/AdvSetLanip. The manipulation of the argument lanIp results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used...

6.5CVSS7.1AI score0.00993EPSS
Exploits1References5
Rows per page
Query Builder