Ac15 Firmware

ac15_firmware

Vendor: Tenda • 85 CVEs

CVEs (85)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-44168 1Tenda 1Ac15 Firmware Apr 29, 2025 Nov 21, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AC15 V15.03.05.18 is vulnerable to Buffer Overflow via function fromSetRouteStatic..
CVE-2022-44167 1Tenda 1Ac15 Firmware Apr 29, 2025 Nov 21, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AC15 V15.03.05.18 is avulnerable to Buffer Overflow via function formSetPPTPServer.
CVE-2022-43259 1Tenda 1Ac15 Firmware May 12, 2025 Oct 18, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AC15 V15.03.05.18 was discovered to contain a stack overflow via the timeZone parameter in the form_fast_setting_wifi_set function.
CVE-2022-40851 1Tenda 1Ac15 Firmware May 22, 2025 Sep 23, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC15 V15.03.05.19 contained a stack overflow via the function fromAddressNat.
CVE-2022-37175 1Tenda 1Ac15 Firmware Nov 21, 2024 Aug 19, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda ac15 firmware V15.03.05.18 httpd server has stack buffer overflow in /goform/formWifiBasicSet.
CVE-2022-28557 1Tenda 1Ac15 Firmware Nov 21, 2024 May 4, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 There is a command injection vulnerability at the /goform/setsambacfg interface of Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin device web, which can also cooperate with CVE-2021-44971 to cause unconditional arb...Show more There is a command injection vulnerability at the /goform/setsambacfg interface of Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin device web, which can also cooperate with CVE-2021-44971 to cause unconditional arbitrary command executionShow less
CVE-2022-28556 1Tenda 1Ac15 Firmware Nov 21, 2024 May 4, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin is vulnerable to Buffer Overflow. The stack overflow vulnerability lies in the /goform/setpptpservercfg interface of the web. The sent post data startip and endip are...Show more Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin is vulnerable to Buffer Overflow. The stack overflow vulnerability lies in the /goform/setpptpservercfg interface of the web. The sent post data startip and endip are copied to the stack using the sanf function, resulting in stack overflow. Similarly, this vulnerability can be used together with CVE-2021-44971Show less
CVE-2021-44971 1Tenda 2Ac15 Firmware Ac5 Firmware Nov 21, 2024 Jan 28, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Multiple Tenda devices are affected by authentication bypass, such as AC15V1.0 Firmware V15.03.05.20_multi?AC5V1.0 Firmware V15.03.06.48_multi and so on. an attacker can obtain sensitive information, and even combine it...Show more Multiple Tenda devices are affected by authentication bypass, such as AC15V1.0 Firmware V15.03.05.20_multi?AC5V1.0 Firmware V15.03.06.48_multi and so on. an attacker can obtain sensitive information, and even combine it with authenticated command injection to implement RCE.Show less
CVE-2020-15916 1Tenda 1Ac15 Firmware Nov 21, 2024 Jul 23, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 goform/AdvSetLanip endpoint on Tenda AC15 AC1900 15.03.05.19 devices allows remote attackers to execute arbitrary system commands via shell metacharacters in the lanIp POST parameter.
CVE-2020-10989 1Tenda 1Ac15 Firmware Nov 21, 2024 Jul 13, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 An XSS issue in the /goform/WifiBasicSet endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote attackers to execute malicious payloads via the WifiName POST parameter.
CVE-2020-10988 1Tenda 1Ac15 Firmware Nov 21, 2024 Jul 13, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A hard-coded telnet credential in the tenda_login binary of Tenda AC15 AC1900 version 15.03.05.19 allows unauthenticated remote attackers to start a telnetd service on the device.
CVE-2020-10987 1Tenda 1Ac15 Firmware Nov 7, 2025 Jul 13, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 The goform/setUsbUnload endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote attackers to execute arbitrary system commands via the deviceName POST parameter.
CVE-2020-10986 1Tenda 1Ac15 Firmware Nov 21, 2024 Jul 13, 2020 N/A· v4 6.5 MEDIUM· v3 7.1 HIGH· v2 A CSRF issue in the /goform/SysToolReboot endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote attackers to reboot the device and cause denial of service via a payload hosted by an attacker-controlled web page...Show more A CSRF issue in the /goform/SysToolReboot endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote attackers to reboot the device and cause denial of service via a payload hosted by an attacker-controlled web page.Show less
CVE-2018-18732 1Tenda 5Ac10 Firmware Ac15 FirmwareAc18 Firmware+2 more Nov 21, 2024 Oct 29, 2018 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a buffer overflow vulnerability in the router'...Show more An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the 'ntpServer' parameter for a post request, the value is directly used in a strcpy to a local variable placed on the stack, which overrides the return address of the function.Show less
CVE-2018-18731 1Tenda 5Ac10 Firmware Ac15 FirmwareAc18 Firmware+2 more Nov 21, 2024 Oct 29, 2018 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a buffer overflow vulnerability in the router'...Show more An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the 'deviceMac' parameter for a post request, the value is directly used in a sprintf to a local variable placed on the stack, which overrides the return address of the function.Show less
CVE-2018-18730 1Tenda 5Ac10 Firmware Ac15 FirmwareAc18 Firmware+2 more Nov 21, 2024 Oct 29, 2018 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a buffer overflow vulnerability in the router'...Show more An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the 'startIp' and 'endIp' parameters for a post request, each value is directly used in a sprintf to a local variable placed on the stack, which overrides the return address of the function.Show less
CVE-2018-18729 1Tenda 5Ac10 Firmware Ac15 FirmwareAc18 Firmware+2 more Nov 21, 2024 Oct 29, 2018 N/A· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a heap-based buffer overflow vulnerability in...Show more An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a heap-based buffer overflow vulnerability in the router's web server -- httpd. While processing the 'mac' parameter for a post request, the value is directly used in a strcpy to a variable placed on the heap, which can leak sensitive information or even hijack program control flow.Show less
CVE-2018-18728 1Tenda 3Ac15 Firmware Ac18 FirmwareAc9 Firmware Nov 21, 2024 Oct 29, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered on Tenda AC9 V15.03.05.19(6318)_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. They allow remote code execution via shell metacharacters in the usbName field to the __fastcall f...Show more An issue was discovered on Tenda AC9 V15.03.05.19(6318)_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. They allow remote code execution via shell metacharacters in the usbName field to the __fastcall function with a POST request.Show less
CVE-2018-18727 1Tenda 5Ac10 Firmware Ac15 FirmwareAc18 Firmware+2 more Nov 21, 2024 Oct 29, 2018 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a buffer overflow vulnerability in the router'...Show more An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the 'deviceList' parameter for a post request, the value is directly used in a strcpy to a local variable placed on the stack, which overrides the return address of the function.Show less
CVE-2018-18709 1Tenda 5Ac10 Firmware Ac15 FirmwareAc18 Firmware+2 more Nov 21, 2024 Oct 29, 2018 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. It is a buffer overflow vulnerability in the router's w...Show more An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. It is a buffer overflow vulnerability in the router's web server -- httpd. When processing the "firewallEn" parameter for a post request, the value is directly used in a strcpy to a local variable placed on the stack, which overrides the return address of the function.Show less

Previous 1 2 345 Next