Tenda

Ac23 Firmware

27 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2026-1420

Exploit
  • EPSS 0.03%
  • Veröffentlicht 26.01.2026 05:02:07
  • Zuletzt bearbeitet 28.01.2026 14:44:39

A flaw has been found in Tenda AC23 16.03.07.52. This impacts an unknown function of the file /goform/WifiExtraSet. This manipulation of the argument wpapsk_crypto causes buffer overflow. Remote exploitation of the attack is possible. The exploit has...

9.8

CVE-2026-0640

Exploit
  • EPSS 0.1%
  • Veröffentlicht 06.01.2026 15:32:08
  • Zuletzt bearbeitet 15.01.2026 19:17:30

A weakness has been identified in Tenda AC23 16.03.07.52. This affects the function sscanf of the file /goform/PowerSaveSet. Executing a manipulation of the argument Time can lead to buffer overflow. The attack can be launched remotely. The exploit h...

9

CVE-2025-15217

Exploit
  • EPSS 0.1%
  • Veröffentlicht 30.12.2025 03:15:51
  • Zuletzt bearbeitet 24.02.2026 07:17:04

A security flaw has been discovered in Tenda AC23 16.03.07.52. Affected is the function formSetPPTPUserList of the component HTTP POST Request Handler. Performing a manipulation of the argument list results in buffer overflow. The attack can be initi...

8.8

CVE-2025-15216

Exploit
  • EPSS 0.09%
  • Veröffentlicht 30.12.2025 03:15:51
  • Zuletzt bearbeitet 02.01.2026 21:29:14

A vulnerability was identified in Tenda AC23 16.03.07.52. This impacts the function fromSetIpMacBind of the file /goform/SetIpMacBind. Such manipulation of the argument bindnum leads to stack-based buffer overflow. It is possible to launch the attack...

9.8

CVE-2025-12596

Exploit
  • EPSS 0.21%
  • Veröffentlicht 02.11.2025 10:32:06
  • Zuletzt bearbeitet 05.11.2025 15:55:16

A security vulnerability has been detected in Tenda AC23 16.03.07.52. Affected is the function saveParentControlInfo of the file /goform/saveParentControlInfo. Such manipulation of the argument Time leads to buffer overflow. It is possible to launch ...

9.8

CVE-2025-12595

Exploit
  • EPSS 0.21%
  • Veröffentlicht 02.11.2025 10:02:07
  • Zuletzt bearbeitet 24.02.2026 07:16:38

A weakness has been identified in Tenda AC23 16.03.07.52. This impacts the function formSetVirtualSer of the file /goform/SetVirtualServerCfg. This manipulation of the argument list causes buffer overflow. It is possible to initiate the attack remote...

8.8

CVE-2025-11356

Exploit
  • EPSS 0.14%
  • Veröffentlicht 07.10.2025 07:02:07
  • Zuletzt bearbeitet 09.10.2025 16:46:52

A vulnerability was found in Tenda AC23 up to 16.03.07.52. Affected by this issue is the function sscanf of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. It is possible to launch the attack remo...

8.8

CVE-2025-10803

Exploit
  • EPSS 0.26%
  • Veröffentlicht 22.09.2025 15:02:07
  • Zuletzt bearbeitet 24.09.2025 20:25:18

A vulnerability has been found in Tenda AC23 up to 16.03.07.52. Affected by this vulnerability is the function sscanf of the file /goform/SetPptpServerCfg of the component HTTP POST Request Handler. Such manipulation of the argument startIp leads to ...

10

CVE-2025-9605

Exploit
  • EPSS 0.48%
  • Veröffentlicht 29.08.2025 02:02:08
  • Zuletzt bearbeitet 03.09.2025 16:10:04

A security vulnerability has been detected in Tenda AC21 and AC23 16.03.08.16. Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. Such manipulation of the argument mac leads to stack-based buffer overflow. The att...

9

CVE-2025-8060

Exploit
  • EPSS 0.25%
  • Veröffentlicht 23.07.2025 01:32:06
  • Zuletzt bearbeitet 01.08.2025 20:02:41

A vulnerability has been found in Tenda AC23 16.03.07.52 and classified as critical. Affected by this vulnerability is the function sub_46C940 of the file /goform/setMacFilterCfg of the component httpd. The manipulation of the argument deviceList lea...