Ac15 Firmware Security Vulnerabilities and Issues — Ac15 Firmware CVE List

Lucene search

TendacnAc15 Firmware

20 matches found

CVE•added 2020/05/22 5:15 p.m.•94 views

CVE-2020-13390

An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318 )_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing t...

9.8CVSS9.6AI score0.02148EPSS

CVE•added 2020/05/22 5:15 p.m.•94 views

CVE-2020-13392

9.8CVSS9.6AI score0.02148EPSS

CVE•added 2020/05/22 5:15 p.m.•88 views

CVE-2020-13393

9.8CVSS9.6AI score0.0193EPSS

CVE•added 2020/05/22 5:15 p.m.•84 views

CVE-2020-13391

9.8CVSS9.6AI score0.02148EPSS

CVE•added 2020/05/22 5:15 p.m.•82 views

CVE-2020-13389

9.8CVSS9.6AI score0.02148EPSS

CVE•added 2020/05/22 5:15 p.m.•78 views

CVE-2020-13394

9.8CVSS9.5AI score0.02148EPSS

CVE•added 2018/02/15 11:29 p.m.•60 views

CVE-2018-5767

An issue was discovered on Tenda AC15 V15.03.1.16_multi devices. A remote, unauthenticated attacker can gain remote code execution on the device with a crafted password parameter for the COOKIE header.

9.8CVSS9.8AI score0.67538EPSS

CVE•added 2022/09/23 2:15 p.m.•47 views

CVE-2022-40865

Tenda AC15 and AC18 routers V15.03.05.19 contain heap overflow vulnerabilities in the function setSchedWifi with the request /goform/openSchedWifi/

9.8CVSS9.8AI score0.0018EPSS

CVE•added 2022/09/15 8:15 p.m.•44 views

CVE-2022-38325

Tenda AC15 WiFi Router V15.03.05.19_multi and AC18 WiFi Router V15.03.05.19_multi were discovered to contain a buffer overflow via the filePath parameter at /goform/expandDlnaFile.

9.8CVSS9.8AI score0.00186EPSS

CVE•added 2022/09/15 8:15 p.m.•44 views

CVE-2022-38326

Tenda AC15 WiFi Router V15.03.05.19_multi and AC18 WiFi Router V15.03.05.19_multi were discovered to contain a buffer overflow via the page parameter at /goform/NatStaticSetting.

9.8CVSS9.8AI score0.00186EPSS

CVE•added 2021/12/03 7:15 p.m.•42 views

CVE-2021-44352

A Stack-based Buffer Overflow vulnerability exists in the Tenda AC15 V15.03.05.18_multi device via the list parameter in a post request in goform/SetIpMacBind.

9.8CVSS9.4AI score0.0122EPSS

CVE•added 2022/09/23 2:15 p.m.•42 views

CVE-2022-40869

Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function fromDhcpListClient with a combined parameter "list*" ("%s%d","list").

9.8CVSS9.7AI score0.00171EPSS

CVE•added 2022/09/23 2:15 p.m.•41 views

CVE-2022-40860

Tenda AC15 router V15.03.05.19 contains a stack overflow vulnerability in the function formSetQosBand->FUN_0007dd20 with request /goform/SetNetControlList

9.8CVSS9.5AI score0.00198EPSS

CVE•added 2022/09/23 2:15 p.m.•38 views

CVE-2022-40862

Tenda AC15 and AC18 router V15.03.05.19 contains stack overflow vulnerability in the function fromNatStaticSetting with the request /goform/NatStaticSetting

9.8CVSS9.6AI score0.00198EPSS

CVE•added 2018/09/02 3:29 a.m.•37 views

CVE-2018-16333

An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a buffer overflow vulnerability in the router's web server. While processing the ssid parameter for a POST request, the value...

7.8CVSS7.7AI score0.00644EPSS

CVE•added 2022/09/23 2:15 p.m.•36 views

CVE-2022-40853

Tenda AC15 router V15.03.05.19 contains a stack overflow via the list parameter at /goform/fast_setting_wifi_set

9.8CVSS9.6AI score0.00198EPSS

CVE•added 2018/07/21 12:29 p.m.•34 views

CVE-2018-14492

Tenda AC7 through V15.03.06.44_CN, AC9 through V15.03.05.19(6318)_CN, and AC10 through V15.03.06.23_CN devices have a Stack-based Buffer Overflow via a long limitSpeed or limitSpeedup parameter to an unspecified /goform URI.

7.5CVSS7.6AI score0.00354EPSS

CVE•added 2022/09/23 2:15 p.m.•33 views

CVE-2022-40864

Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function setSmartPowerManagement with the request /goform/PowerSaveSet

9.8CVSS9.8AI score0.00171EPSS

CVE•added 2018/03/20 7:29 p.m.•32 views

CVE-2018-5768

A remote, unauthenticated attacker can gain remote code execution on the the Tenda AC15 router with a specially crafted password parameter for the COOKIE header.

10CVSS9.9AI score0.02348EPSS

CVE•added 2018/03/20 3:29 p.m.•28 views

CVE-2018-5770

An issue was discovered on Tenda AC15 devices. A remote, unauthenticated attacker can make a request to /goform/telnet, creating a telnetd service on the device. This service is password protected; however, several default accounts exist on the device that are root accounts, which can be used to lo...

10CVSS9.4AI score0.03855EPSS