Ac500 Firmware Security Vulnerabilities and Issues — Ac500 Firmware CVE List

Lucene search

TendaAc500 Firmware

10 matches found

CVE•added 2024/04/17 12:15 p.m.•68 views

CVE-2024-3910

A vulnerability, which was classified as critical, has been found in Tenda AC500 2.0.1.9(1307). Affected by this issue is the function fromDhcpListClient of the file /goform/DhcpListClient. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched remote...

9CVSS8.7AI score0.0056EPSS

Web

CVE•added 2024/04/17 12:15 p.m.•61 views

CVE-2024-3908

A vulnerability classified as critical has been found in Tenda AC500 2.0.1.9(1307). Affected is the function formWriteFacMac of the file /goform/WriteFacMac. The manipulation of the argument mac leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed...

9.8CVSS7AI score0.05783EPSS

Web

CVE•added 2024/04/17 11:15 a.m.•58 views

CVE-2024-3905

A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been classified as critical. This affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. It is possible to initiate the attack remotely...

9CVSS7AI score0.00987EPSS

Web

CVE•added 2023/02/27 4:15 p.m.•49 views

CVE-2023-25234

Tenda AC500 V2.0.1.9(1307) is vulnerable to Buffer Overflow in function fromAddressNat via parameters entrys and mitInterface.

9.8CVSS9.3AI score0.6875EPSS

CVE•added 2024/04/17 11:15 a.m.•49 views

CVE-2024-3906

A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been declared as critical. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack can be initiated remotely....

9CVSS6.9AI score0.00609EPSS

Web

CVE•added 2024/04/17 4:15 p.m.•47 views

CVE-2024-32318

Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the vlan parameter in the formSetVlanInfo function.

9.8CVSS7.4AI score0.00264EPSS

CVE•added 2024/04/17 11:15 a.m.•45 views

CVE-2024-3907

A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been rated as critical. This issue affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been d...

9.8CVSS6.9AI score0.00591EPSS

Web

CVE•added 2024/04/17 12:15 p.m.•43 views

CVE-2024-3909

A vulnerability classified as critical was found in Tenda AC500 2.0.1.9(1307). Affected by this vulnerability is the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be launched remotely. The expl...

9.8CVSS6.9AI score0.00254EPSS

Web

CVE•added 2023/02/27 4:15 p.m.•41 views

CVE-2023-25233

Tenda AC500 V2.0.1.9(1307) is vulnerable to Buffer Overflow in function fromRouteStatic via parameters entrys and mitInterface.

9.8CVSS9.4AI score0.00121EPSS

CVE•added 2025/07/14 8:15 a.m.•17 views

CVE-2025-7586

A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been declared as critical. Affected by this vulnerability is the function formSetAPCfg of the file /goform/setWtpData. The manipulation of the argument radio_2g_1 leads to stack-based buffer overflow. The attack can be launched remotely...

9CVSS8.9AI score0.00096EPSS

Web