7 matches found
CVE-2026-1420
A flaw has been found in Tenda AC23 16.03.07.52. This impacts an unknown function of the file /goform/WifiExtraSet. This manipulation of the argument wpapskcrypto causes buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used...
PT-2026-4723
Name of the Vulnerable Software and Affected Versions Tenda AC23 version 16.03.07.52 Description A buffer overflow flaw exists in the Tenda AC23 router. The issue is due to the manipulation of the wpapsk crypto argument within the /goform/WifiExtraSet file. This allows for remote exploitation. Th...
CVE-2025-15216
A vulnerability was identified in Tenda AC23 16.03.07.52. This impacts the function fromSetIpMacBind of the file /goform/SetIpMacBind. Such manipulation of the argument bindnum leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is publicly available an...
CVE-2025-15217
A security flaw has been discovered in Tenda AC23 16.03.07.52. Affected is the function formSetPPTPUserList of the component HTTP POST Request Handler. Performing a manipulation of the argument list results in buffer overflow. The attack can be initiated remotely...
PT-2025-53838
Name of the Vulnerable Software and Affected Versions Tenda AC23 version 16.03.07.52 Description A security issue exists in the Tenda AC23 router. The formSetPPTPUserList function within the HTTP POST Request Handler component is susceptible to a buffer overflow when the argument list is...
CVE-2025-12596
A security vulnerability has been detected in Tenda AC23 16.03.07.52. Affected is the function saveParentControlInfo of the file /goform/saveParentControlInfo. Such manipulation of the argument Time leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-11356
CVE-2025-11356 affects Tenda AC23 (pre-16.03.07.52). The vulnerability is in sscanf within /goform/SetStaticRouteCfg, where input length validation allows a buffer overflow, enabling remote exploitation. Public exploits exist. Remedies include upgrading to a version newer than 16.03.07.52 (per PT...