Ac15 Firmware@15.03.05.20 multi tde01 Security Vulnerabilities and Issues — Ac15 Firmware@15.03.05.20 multi tde01 CVE List

Lucene search

TendaAc15 Firmware15.03.05.20 multi tde01

2 matches found

CVE•added 2022/05/04 4:15 p.m.•92 views

CVE-2022-28557

There is a command injection vulnerability at the /goform/setsambacfg interface of Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin device web, which can also cooperate with CVE-2021-44971 to cause unconditional arbitrary command execution

9.8CVSS8.8AI score0.10004EPSS

CVE•added 2022/05/04 4:15 p.m.•84 views

CVE-2022-28556

Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin is vulnerable to Buffer Overflow. The stack overflow vulnerability lies in the /goform/setpptpservercfg interface of the web. The sent post data startip and endip are copied to the stack using the sanf function, resulting in stack overflow. Simi...

7.5CVSS8.6AI score0.05503EPSS