3 matches found
CVE-2025-10443
A vulnerability was identified in Tenda AC9 and AC15 15.03.05.14/15.03.05.18. This vulnerability affects the function formexeCommand of the file /goform/exeCommand. Such manipulation of the argument cmdinput leads to buffer overflow. The attack can be executed remotely. The exploit is publicly...
PT-2025-37470
Name of the Vulnerable Software and Affected Versions: Tenda AC9 version 15.03.05.14 Tenda AC15 version 15.03.05.14 Description: A vulnerability exists due to the manipulation of the cmdinput argument in the formexeCommand function within the /goform/exeCommand file, leading to OS command...
CVE-2025-45428
In Tenda ac9 v1.0 with firmware V15.03.05.14multi, the rebootTime parameter of /goform/SetSysAutoRebbotCfg has a stack overflow vulnerability, which can lead to remote arbitrary code execution...