PT-2025-53682

Name of the Vulnerable Software and Affected Versions Tenda AC10U versions 15.03.06.48 through 15.03.06.49 Description A buffer overflow issue exists in the Tenda AC10U. The vulnerability is located in the fromadvsetlanip function within the /goform/AdvSetLanip file, specifically within the POST...

Tenda FH1203 安全漏洞

The Tenda FH1203 is a wireless router from Tenda China. A buffer overflow vulnerability exists in the Tenda FH1203 version 2.0.1.6, which is caused by the parameter lanMask in the fromadvsetlanip function in the file /goform/AdvSetLanip that fails to correctly validate the length of the input dat...

Tenda FH1205 安全漏洞

The tenda FH1205 is a dual-band wireless router for home users with a high price/performance ratio and stable network performance. A buffer overflow vulnerability exists in the Tenda FH1205 version 2.0.0.7. The vulnerability affects the fromadvsetlanip function in the /goform/AdvSetLanip file, an...

PT-2025-25528 · Tenda · Tenda Fh1205

Name of the Vulnerable Software and Affected Versions: Tenda FH1205 version 2.0.0.7 Description: A critical vulnerability has been found in Tenda FH1205, affecting the function fromadvsetlanip of the file /goform/AdvSetLanip. The manipulation of the argument lanMask leads to buffer overflow. The...

The vulnerability of the fromadvsetlanip() function (/goform/AdvSetLanip) in the Tenda AC15 router software allows a hacker to cause a service failure.

The vulnerability of the fromadvsetlanip function /goform/AdvSetLanip of the Tenda AC15 router’s microprogramming software is related to the copying of buffers without checking the size of the input data when processing the lanMask parameter. Exploiting this vulnerability could allow a remote...

The vulnerability of the HTTP POST Request Handler component of the fromadvsetlanip() function in the Tenda AC9 router’s microprogramming system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HTTP POST Request Handler component of the fromadvsetlanip function in the Tenda AC9 router’s microprogramming system is related to buffer overflow in the stack during the processing of the lanMask parameter. Exploiting this vulnerability allows an attacker to compromise...

CVE-2025-5861 Tenda AC7 AdvSetLanip fromadvsetlanip buffer overflow

A vulnerability has been found in Tenda AC7 15.03.06.44 and classified as critical. This vulnerability affects the function fromadvsetlanip of the file /goform/AdvSetLanip. The manipulation of the argument lanMask leads to buffer overflow. The attack can be initiated remotely. The exploit has bee...

The vulnerability of the fromadvsetlanip() function in the Tenda AC18 router’s microprogramming software allows a hacker to induce a service failure.

The vulnerability of the fromadvsetlanip function in the Tenda AC18 router’s microprogramming software is related to buffer overflow in the stack when processing the lanMask parameter. Exploiting this vulnerability can allow an attacker to cause a service failure by sending a specially crafted PO...

CVE-2025-5609 Tenda AC18 AdvSetLanip fromadvsetlanip buffer overflow

A vulnerability classified as critical was found in Tenda AC18 15.03.05.05. Affected by this vulnerability is the function fromadvsetlanip of the file /goform/AdvSetLanip. The manipulation of the argument lanMask leads to buffer overflow. The attack can be launched remotely. The exploit has been...

CVE-2023-51972

Tenda AX1803 v1.0.0.1 was discovered to contain a command injection vulnerability via the function fromAdvSetLanIp...

CVE-2023-51972

Tenda AX1803 v1.0.0.1 was discovered to contain a command injection vulnerability via the function fromAdvSetLanIp...

CVE-2023-51972

Tenda AX1803 v1.0.0.1 was discovered to contain a command injection vulnerability via the function fromAdvSetLanIp...

Command injection

Tenda AX1803 v1.0.0.1 was discovered to contain a command injection vulnerability via the function fromAdvSetLanIp...

Tenda AX1803 安全漏洞

Tenda AX1803 is a dual-band Gigabit WIFI6 router from Tenda China. A command injection vulnerability exists in the Tenda AX1803 v1.0.0.1, which stems from the fromAdvSetLanIp method failing to properly filter construct command special characters, commands, etc. The vulnerability can be exploited ...

CVE-2023-51972

Tenda AX1803 v1.0.0.1 was discovered to contain a command injection vulnerability via the function fromAdvSetLanIp...

PT-2024-14357 · Tenda · Tenda Ax1803

Name of the Vulnerable Software and Affected Versions: Tenda AX1803 version 1.0.0.1 Description: A command injection issue was discovered via the fromAdvSetLanIp function. Recommendations: For Tenda AX1803 version 1.0.0.1, consider disabling the fromAdvSetLanIp function until a patch is available...