The vulnerability of the formSetPPTPServer() function in the Tenda AC7 router’s microprogramming software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the formSetPPTPServer function in the Tenda AC7 router’s microprogramming software is related to the operation of writing data outside of the buffer in memory when processing the pptpserverstartip and pptpserverendip parameters. Exploiting this vulnerability allows a remote...

PT-2025-3476 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version V15.03.05.19 Description: The issue is related to a stack overflow in the formSetPPTPServer function when handling the startIP parameter. This can allow a remote attacker to impact the confidentiality, integrity, and...

The vulnerability of the formSetPPTPServer() function (/goform/SetPptpServerCfg) in the Tenda AC18 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetPPTPServer function /goform/SetPptpServerCfg in the Tenda AC18 router software is related to the operation of writing data outside the buffer in memory when processing the startIP parameter. Exploiting this vulnerability could allow an attacker to compromise the...