PT-2026-28667

Name of the Vulnerable Software and Affected Versions Tenda AC5 version 15.03.06.47 Description A flaw exists in the Tenda AC5 version 15.03.06.47. This issue is located within the formSetCfm function of the /goform/setcfm file, part of the POST Request Handler component. Manipulation of the...

The vulnerability of the formSetCfm() function (/goform/setcfm) in the Tenda AC1206 router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the formSetCfm function /goform/setcfm in the Tenda AC1206 router microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the formSetCfm() function in the Tenda AC18 router’s microprogramming software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the formSetCfm function in the Tenda AC18 router’s microprogramming software is related to the issue where the write operation goes beyond the buffer boundaries in memory when processing the funcpara1 parameter. Exploiting this vulnerability allows a remote attacker to execut...

The vulnerability of the formSetCfm function in the /goform/setcfm microprogramming software for the Tenda wireless access point allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the formSetCfm function in the /goform/setcfm microprogramming system for the wireless access point Tenda is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code or cause...

The vulnerability of the formSetCfm (/goform/setcfm) function in the Tenda AC7 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetCfm /goform/setcfm function in the Tenda AC7 router software is caused by a buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the formSetCfm() function (/goform/setcfm) in the Tenda FH1205 router software allows a attacker to compromise the integrity, accessibility, and confidentiality of the protected information.

The vulnerability of the formSetCfm function /goform/setcfm of the Tenda FH1205 router’s microprogramming software is related to the operation that goes beyond the buffer boundaries in memory when processing the funcpara1 parameter. Exploiting this vulnerability can allow an attacker to compromis...

Tenda FH1202 formSetCfm method stack buffer overflow vulnerability

The Tenda FH1202 is a dual-band wireless router from the Tenda brand, designed for large homes, small offices, or business and leisure areas, and designed to provide stable wireless network coverage and high-speed transmission. The Tenda FH1202 suffers from a stack buffer overflow vulnerability...

The vulnerability of the formSetCfm function (implemented by goform/setcfm) in the Tenda AC10U router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetPPTPServer /goform/SetPptpServerCfg function in the Tenda AC10U router software is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

PT-2024-2344 · Tenda · Tenda Ac10

Name of the Vulnerable Software and Affected Versions: Tenda AC10U version 15.03.06.48 Description: A critical issue has been found in the function formSetCfm of the file goform/setcfm, where the manipulation of the argument funcpara1 leads to a stack-based buffer overflow. This can be exploited...

The vulnerability of the formSetCfm() function in the httpd daemon of the wireless access points’ microprogramming software from Tenda i9, which allows a intruder to trigger a service failure.

The vulnerability of the formSetCfm function in the httpd daemon of the microprogrammed wireless access points from Tenda i9 is related to the operation that goes beyond the buffer in memory when processing the funcpara1 parameter. Exploiting this vulnerability could allow a malicious actor to...