Ac5 Firmware

ac5_firmware

Vendor: Tenda • 40 CVEs

CVEs (40)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-38933 1Tenda 9Ac10 Firmware Ac1206 FirmwareAc5 Firmware+6 more Nov 21, 2024 Aug 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0 V15.03.06.28, FH1203 V2.0.1.6 and AC9 V3.0 V15.03.06.42_multi, and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the dev...Show more Tenda AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0 V15.03.06.28, FH1203 V2.0.1.6 and AC9 V3.0 V15.03.06.42_multi, and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the deviceId parameter in the formSetClientState function.Show less
CVE-2023-38931 1Tenda 8Ac10 Firmware Ac1206 FirmwareAc5 Firmware+5 more Nov 21, 2024 Aug 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC10 V1.0 V15.03.06.23, AC1206 V15.03.06.23, AC8 v4 V16.03.34.06, AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0 V15.03.06.28, AC10 v4.0 V16.03.10.13 and FH1203 V2.0.1.6 were discovered to c...Show more Tenda AC10 V1.0 V15.03.06.23, AC1206 V15.03.06.23, AC8 v4 V16.03.34.06, AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0 V15.03.06.28, AC10 v4.0 V16.03.10.13 and FH1203 V2.0.1.6 were discovered to contain a stack overflow via the list parameter in the setaccount function.Show less
CVE-2023-38930 1Tenda 5Ac5 Firmware Ac7 FirmwareAc9 Firmware+2 more Nov 21, 2024 Aug 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC7 V1.0,V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0,V15.03.06.28, AC9 V3.0,V15.03.06.42_multi and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the deviceId parameter in the addWifiMacFilter func...Show more Tenda AC7 V1.0,V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0,V15.03.06.28, AC9 V3.0,V15.03.06.42_multi and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the deviceId parameter in the addWifiMacFilter function.Show less
CVE-2023-37717 1Tenda 7Ac10 Firmware Ac1206 FirmwareAc5 Firmware+4 more Nov 21, 2024 Jul 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda F1202 V1.0BR_V1.2.0.20(408) and FH1202_V1.2.0.19_EN, AC10 V1.0, AC1206 V1.0, AC7 V1.0, AC5 V1.0, and AC9 V3.0 were discovered to contain a stack overflow in the page parameter in the function fromDhcpListClient.
CVE-2023-37716 1Tenda 7Ac10 Firmware Ac1206 FirmwareAc5 Firmware+4 more Nov 21, 2024 Jul 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda F1202 V1.0BR_V1.2.0.20(408) and FH1202_V1.2.0.19_EN, AC10 V1.0, AC1206 V1.0, AC7 V1.0, AC5 V1.0, and AC9 V3.0 were discovered to contain a stack overflow in the page parameter in the function fromNatStaticSetting.
CVE-2023-31587 1Tenda 1Ac5 Firmware Jan 27, 2025 May 16, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 router V15.03.06.28 was discovered to contain a remote code execution (RCE) vulnerability via the Mac parameter at ip/goform/WriteFacMac.
CVE-2023-30368 1Tenda 1Ac5 Firmware Feb 4, 2025 Apr 24, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 V15.03.06.28 is vulnerable to Buffer Overflow via the initWebs function.
CVE-2023-25220 1Tenda 1Ac5 Firmware Feb 12, 2025 Apr 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the add_white_node function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a craf...Show more Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the add_white_node function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.Show less
CVE-2023-25219 1Tenda 1Ac5 Firmware Feb 12, 2025 Apr 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromDhcpListClient function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a...Show more Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromDhcpListClient function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.Show less
CVE-2023-25218 1Tenda 1Ac5 Firmware Feb 12, 2025 Apr 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the form_fast_setting_wifi_set function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary cod...Show more Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the form_fast_setting_wifi_set function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.Show less
CVE-2023-25217 1Tenda 1Ac5 Firmware Feb 12, 2025 Apr 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the formWifiBasicSet function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a cr...Show more Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the formWifiBasicSet function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.Show less
CVE-2023-25216 1Tenda 1Ac5 Firmware Feb 12, 2025 Apr 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the formSetFirewallCfg function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a...Show more Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the formSetFirewallCfg function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.Show less
CVE-2023-25215 1Tenda 1Ac5 Firmware Feb 12, 2025 Apr 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via...Show more Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.Show less
CVE-2023-25214 1Tenda 1Ac5 Firmware Feb 12, 2025 Apr 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the setSchedWifi function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafte...Show more Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the setSchedWifi function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.Show less
CVE-2023-25213 1Tenda 1Ac5 Firmware Feb 12, 2025 Apr 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the check_param_changed function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a...Show more Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the check_param_changed function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.Show less
CVE-2023-25212 1Tenda 1Ac5 Firmware Feb 13, 2025 Apr 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromSetWirelessRepeat function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via...Show more Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromSetWirelessRepeat function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.Show less
CVE-2023-25211 1Tenda 1Ac5 Firmware Feb 13, 2025 Apr 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the R7WebsSecurityHandler function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via...Show more Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the R7WebsSecurityHandler function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.Show less
CVE-2023-25210 1Tenda 1Ac5 Firmware Feb 13, 2025 Apr 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromSetSysTime function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a craf...Show more Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromSetSysTime function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.Show less
CVE-2021-44971 1Tenda 2Ac15 Firmware Ac5 Firmware Nov 21, 2024 Jan 28, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Multiple Tenda devices are affected by authentication bypass, such as AC15V1.0 Firmware V15.03.05.20_multi?AC5V1.0 Firmware V15.03.06.48_multi and so on. an attacker can obtain sensitive information, and even combine it...Show more Multiple Tenda devices are affected by authentication bypass, such as AC15V1.0 Firmware V15.03.05.20_multi?AC5V1.0 Firmware V15.03.06.48_multi and so on. an attacker can obtain sensitive information, and even combine it with authenticated command injection to implement RCE.Show less
CVE-2021-3186 1Tenda 1Ac5 Firmware Jul 7, 2025 Jan 26, 2021 N/A· v4 5.4 MEDIUM· v3 4.3 MEDIUM· v2 A Stored Cross-site scripting (XSS) vulnerability in /main.html Wifi Settings in Tenda AC5 AC1200 version V15.03.06.47_multi allows remote attackers to inject arbitrary web script or HTML via the Wifi Name parameter.

Previous 12