A vulnerability was discovered in Tenda AC9 v3.0 V15.03.06.42_multi and Tenda AC9 V1.0 V15.03.05.19(6318)_CN which allows for remote code execution via shell metacharacters in the guestuser field to the __fastcall function with a POST request.
9.8CVSS
9.7AI Score
0.033EPSS
Tenda AC9 V15.03.2.21_cn was discovered to contain a stack overflow via the parameter NPTR.
9.8CVSS
9.6AI Score
0.003EPSS
Tenda AC9 V15.03.2.21_cn was discovered to contain a stack overflow via the function saveparentcontrolinfo.
9.8CVSS
9.6AI Score
0.003EPSS
Tenda AC9 V15.03.2.21_cn was discovered to contain a stack overflow via the function openSchedWifi.
9.8CVSS
9.6AI Score
0.003EPSS