CVE-2026-2877

A vulnerability has been found in Tenda A18 15.13.07.13. This affects the function strcpy of the file /goform/WifiExtraSet of the component Httpd Service. The manipulation of the argument wpapskcrypto5g leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The...

CVE-2026-2877

The CVE-2026-2877 affects Tenda A18 (firmware 15.13.07.13) in the Httpd Service’s /goform/WifiExtraSet endpoint. The issue is a stack-based overflow due to unsafe handling of strcpy on the wpapsk_crypto5g parameter, enabling remote initiation of an attack. Public disclosures exist (including NVD,...

Tenda A18 安全漏洞

The Tenda A18 is a AC1200 dual-band Wi-Fi repeater produced by the Chinese company Tenda. Version 15.13.07.13 of the Tenda A18 contains a security vulnerability. This vulnerability stems from the strcopy function in the /goform/WifiExtraSet file, which exhibits a stack buffer overflow issue due t...

CVE-2025-0848

A vulnerability was found in Tenda A18 up to 15.13.07.09. It has been rated as critical. This issue affects the function SetCmdlineRun of the file /goform/SetCmdlineRun of the component HTTP POST Request Handler. The manipulation of the argument wpapskcrypto5g leads to stack-based buffer overflow...