The vulnerability of the formExpandDlnaFile() function in the Tenda AC15 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formExpandDlnaFile function in the Tenda AC15 router’s microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the filePath parameter. Exploiting this vulnerability can allow an attacker to compromise the...

CVE-2024-2807

CVE-2024-2807 – Tenda AC15 : A stack-based buffer overflow in the /goform/expandDlnaFile endpoint, arising from unsafely handling the filePath parameter in the function formExpandDlnaFile. Affected: Tenda AC15 firmware 15.03.05.18 and 15.03.20_multi. Impact: remote attacker could exploit to execu...

CVE-2024-28550

Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the filePath parameter of formExpandDlnaFile function...

CVE-2024-28550

Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the filePath parameter of formExpandDlnaFile function...

CVE-2024-28550

Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the filePath parameter of formExpandDlnaFile function...

CVE-2024-28550

The CVE-2024-28550 entry concerns Tenda AC18 router firmware V15.03.05.05, reporting a stack overflow in the filePath parameter of the formExpandDlnaFile function. Public references confirm the affected device and parameter, with a CVSSv3.1 base score of 4.3 (Network, Low privileges, no user inte...

PT-2024-22456 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: The issue is a stack overflow vulnerability in the filePath parameter of the formExpandDlnaFile function. Recommendations: For Tenda AC18 version 15.03.05.05, as a temporary workaround, consider...

Tenda AC18 Security Vulnerability

Tenda AC18 is a router from Tenda, China. A security vulnerability exists in Tenda AC18 version V15.03.05.05, which originates from a stack overflow vulnerability in the filePath parameter of the formExpandDlnaFile function...

PT-2024-2405 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda AC15 versions 15.03.05.18 through 15.03.20 multi Description: A critical vulnerability affects the formExpandDlnaFile function of the /goform/expandDlnaFile file, leading to a stack-based buffer overflow when the filePath argument is...