22 matches found
Tenda AC7 /goform/setNotUpgrade File Buffer Overflow Vulnerability
Tenda AC7 is a wireless router from Tenda, a Chinese company. A buffer overflow vulnerability exists in Tenda AC7 version 15.03.06.44, which originates from the parameter newVersion in the file /goform/setNotUpgrade that fails to correctly validate the length and size of the input data, and can b...
Tenda AC15 newVersion Parameter Stack Buffer Overflow Vulnerability
Tenda AC15 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in October 2015, which supports 802.11ac protocol and is mainly designed for home network environment. Tenda AC15 has a stack buffer overflow vulnerability, which originates from the parameter newVersion i...
CVE-2025-11586
A vulnerability was determined in Tenda AC7 15.03.06.44. This affects an unknown function of the file /goform/setNotUpgrade. This manipulation of the argument newVersion causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been publicly disclosed...
CVE-2025-11586 Tenda AC7 setNotUpgrade stack-based overflow
A vulnerability was determined in Tenda AC7 15.03.06.44. This affects an unknown function of the file /goform/setNotUpgrade. This manipulation of the argument newVersion causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been publicly disclosed...
EUVD-2025-33779
A vulnerability was determined in Tenda AC7 15.03.06.44. This affects an unknown function of the file /goform/setNotUpgrade. This manipulation of the argument newVersion causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been publicly disclosed...
CVE-2025-11586 Tenda AC7 setNotUpgrade stack-based overflow
A vulnerability was determined in Tenda AC7 15.03.06.44. This affects an unknown function of the file /goform/setNotUpgrade. This manipulation of the argument newVersion causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been publicly disclosed...
CVE-2025-11586
Summary: CVE-2025-11586 affects Tenda AC7 router firmware 15.03.06.44. A vulnerability exists in the endpoint /goform/setNotUpgrade where manipulation of the argument newVersion triggers a stack-based buffer overflow. This can be exploited remotely and, according to connected sources, the exploit...
Tenda AC7 安全漏洞
Tenda AC7 is a wireless router from Tenda, a Chinese company. A buffer overflow vulnerability exists in Tenda AC7 version 15.03.06.44, which originates from the parameter newVersion in the file /goform/setNotUpgrade that fails to correctly validate the length and size of the input data, and can b...
PT-2025-41606
Name of the Vulnerable Software and Affected Versions Tenda AC7 version 15.03.06.44 Description A stack-based buffer overflow exists in the Tenda AC7 router firmware. The issue is located in an unknown function within the /goform/setNotUpgrade endpoint. Manipulation of the newVersion argument...
CVE-2025-11388
A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown function of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used...
CVE-2025-11388
A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown function of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used...
CVE-2025-11388
A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown function of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used...
CVE-2025-11388 Tenda AC15 setNotUpgrade stack-based overflow
A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown function of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used...
CVE-2025-11388 Tenda AC15 setNotUpgrade stack-based overflow
A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown function of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used...
PT-2025-40979
Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.18 Description A flaw exists in Tenda AC15 version 15.03.05.18 that allows remote attackers to trigger a stack-based buffer overflow. The issue is related to the manipulation of the newVersion argument within the...
Tenda AC15 安全漏洞
Tenda AC15 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in October 2015, which supports 802.11ac protocol and is mainly designed for home network environment. Tenda AC15 has a stack buffer overflow vulnerability, which originates from the parameter newVersion i...
CVE-2025-11324
A vulnerability was identified in Tenda AC18 15.03.05.196318. Affected by this vulnerability is an unknown functionality of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is public...
CVE-2025-11324
A vulnerability was identified in Tenda AC18 15.03.05.196318. Affected by this vulnerability is an unknown functionality of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is public...
CVE-2025-11324
CVE-2025-11324 affects Tenda AC18 (firmware 15.03.05.19(6318)). The vulnerability is a stack-based buffer overflow in an unknown function within /goform/setNotUpgrade caused by improper handling of the newVersion parameter. Exploitation can be performed remotely; a public exploit exists. Affected...
CVE-2025-11324 Tenda AC18 setNotUpgrade stack-based overflow
A vulnerability was identified in Tenda AC18 15.03.05.196318. Affected by this vulnerability is an unknown functionality of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is public...