58 matches found
Tenda AC6 安全漏洞
Tenda AC6 is a dual-band wireless router from Tenda. Tenda AC6 suffers from a buffer overflow vulnerability, which originates from the operation of the parameter lanMask in the file /goform/AdvSetLanip. An attacker can exploit this vulnerability to remotely execute code...
Tenda AC15 安全漏洞
The Tenda AC15 is a wireless router from the Chinese company Tenda. Tenda AC15 suffers from a buffer overflow vulnerability, which originates from the parameter lanMask in the file /goform/AdvSetLanip that fails to correctly validate the length and size of the input data, which can be exploited b...
CVE-2025-5839
A vulnerability, which was classified as critical, has been found in Tenda AC9 15.03.02.13. Affected by this issue is the function fromadvsetlanip of the file /goform/AdvSetLanip of the component POST Request Handler. The manipulation of the argument lanMask leads to buffer overflow. The attack m...
CVE-2025-5839
The CVE-2025-5839 entry concerns Tenda AC9 (v15.03.02.13) and a buffer overflow in the POST Request Handler function fromadvsetlanip, triggered by manipulating the lanMask parameter in /goform/AdvSetLanip. Root cause: improper validation of input length in fromadvsetlanip, enabling remote code ex...
Tenda AC9 安全漏洞
Tenda AC9 is a wireless router from Tenda, a Chinese company. A buffer overflow vulnerability exists in Tenda AC9 version 15.03.02.13, which originates from the parameter lanMask in the file /goform/AdvSetLanip that fails to correctly validate the length of the input data, and can be exploited by...
Tenda AC5 安全漏洞
Tenda AC5 is a wireless router from Tenda, a Chinese company. Tenda AC5 suffers from a buffer overflow vulnerability, which originates from the parameter lanMask in the file /goform/AdvSetLanip that fails to correctly validate the length and size of the input data, which can be exploited by an...
CVE-2025-5609
A vulnerability classified as critical was found in Tenda AC18 15.03.05.05. Affected by this vulnerability is the function fromadvsetlanip of the file /goform/AdvSetLanip. The manipulation of the argument lanMask leads to buffer overflow. The attack can be launched remotely. The exploit has been...
CVE-2025-5609 Tenda AC18 AdvSetLanip fromadvsetlanip buffer overflow
A vulnerability classified as critical was found in Tenda AC18 15.03.05.05. Affected by this vulnerability is the function fromadvsetlanip of the file /goform/AdvSetLanip. The manipulation of the argument lanMask leads to buffer overflow. The attack can be launched remotely. The exploit has been...
Tenda AC18 安全漏洞
The Tenda AC18 is a router from the Chinese company Tenda. A buffer overflow vulnerability exists in the Tenda AC18 /goform/AdvSetLanip handling lanMask parameter, which can be exploited by a remote attacker to submit a special request that can be used to execute arbitrary code in the application...
CVE-2024-52272
Stack-based Buffer Overflow vulnerability in Shenzhen Tenda Technology Co Tenda AC6V2 fromAdvSetLanipoverflow arg:lanMask modules allows Overflow Buffers.This issue affects Tenda AC6V2: through 15.03.06.50...
CVE-2024-52272
CVE-2024-52272 is a stack-based buffer overflow in the Tenda AC6V2 router, triggered by improper handling of the lanMask parameter in the fromAdvSetLanip module. Affected devices exist through version 15.03.06.50 . The vulnerability’s root cause is the unchecked processing of the lanMask argument...
VulnCheck KEV: CVE-2023-27240
Tenda AX3 V16.03.12.11 was discovered to contain a command injection vulnerability via the lanip parameter at /goform/AdvSetLanip...
CVE-2023-27240
Tenda AX3 V16.03.12.11 was discovered to contain a command injection vulnerability via the lanip parameter at /goform/AdvSetLanip...
Tenda AX3 命令注入漏洞
The Tenda Ax3 is an Ax1800 Gigabit Port Dual Band Wifi 6 Wireless Router from Tenda China. Tenda AX3 V16.03.12.11 suffers from a command injection vulnerability that stems from the lanip parameter of /goform/AdvSetLanip failing to correctly filter constructed command special characters, commands,...
PT-2023-21023 · Tenda · Tenda Ax3
Name of the Vulnerable Software and Affected Versions: Tenda AX3 version 16.03.12.11 Description: A command injection issue was discovered via the lanip parameter at the "/goform/AdvSetLanip" API endpoint. This allows for potential exploitation. Recommendations: For Tenda AX3 version 16.03.12.11,...
CVE-2022-28917
Tenda AX12 v22.03.01.21cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp...
CVE-2022-28917
Tenda AX12 v22.03.01.21cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp...
Stack overflow
Tenda AX12 v22.03.01.21cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp...