Tenda

Ac15

23 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2025-10442

Exploit
  • EPSS 0.37%
  • Veröffentlicht 15.09.2025 11:15:33
  • Zuletzt bearbeitet 19.09.2025 20:39:12

A vulnerability was determined in Tenda AC9 and AC15 15.03.05.14. This affects the function formexeCommand of the file /goform/exeCommand. This manipulation of the argument cmdinput causes os command injection. Remote exploitation of the attack is po...

7.5

CVE-2025-55564

Exploit
  • EPSS 0.08%
  • Veröffentlicht 21.08.2025 00:00:00
  • Zuletzt bearbeitet 03.09.2025 14:53:05

Tenda AC15 v15.03.05.19_multi_TD01 has a stack overflow via the list parameter in the fromSetIpMacBind function.

6.6

CVE-2025-8979

Exploit
  • EPSS 0.17%
  • Veröffentlicht 14.08.2025 19:32:07
  • Zuletzt bearbeitet 18.08.2025 15:03:49

A vulnerability was identified in Tenda AC15 15.13.07.13. Affected by this vulnerability is the function check_fw_type/split_fireware/check_fw of the component Firmware Update Handler. The manipulation leads to insufficient verification of data authe...

8.8

CVE-2025-5851

Exploit
  • EPSS 0.2%
  • Veröffentlicht 08.06.2025 23:31:06
  • Zuletzt bearbeitet 09.06.2025 19:04:27

A vulnerability was found in Tenda AC15 15.03.05.19_multi. It has been rated as critical. This issue affects the function fromadvsetlanip of the file /goform/AdvSetLanip of the component HTTP POST Request Handler. The manipulation of the argument lan...

8.8

CVE-2025-5850

Exploit
  • EPSS 0.3%
  • Veröffentlicht 08.06.2025 23:00:20
  • Zuletzt bearbeitet 09.06.2025 19:04:38

A vulnerability was found in Tenda AC15 15.03.05.19_multi. It has been declared as critical. This vulnerability affects the function formsetschedled of the file /goform/SetLEDCf of the component HTTP POST Request Handler. The manipulation of the argu...

8.8

CVE-2025-5849

Exploit
  • EPSS 0.22%
  • Veröffentlicht 08.06.2025 22:31:07
  • Zuletzt bearbeitet 09.06.2025 19:04:44

A vulnerability was found in Tenda AC15 15.03.05.19_multi. It has been classified as critical. This affects the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg of the component HTTP POST Request Handler. The manipulation of the argu...

8.8

CVE-2025-5848

Exploit
  • EPSS 0.2%
  • Veröffentlicht 08.06.2025 22:00:11
  • Zuletzt bearbeitet 09.06.2025 19:04:50

A vulnerability was found in Tenda AC15 15.03.05.19_multi and classified as critical. Affected by this issue is the function formSetPPTPUserList of the file /goform/setPptpUserList of the component HTTP POST Request Handler. The manipulation of the a...

8.8

CVE-2025-3786

Exploit
  • EPSS 0.62%
  • Veröffentlicht 18.04.2025 09:00:23
  • Zuletzt bearbeitet 22.04.2025 16:35:33

A vulnerability was found in Tenda AC15 up to 15.03.05.19 and classified as critical. This issue affects the function fromSetWirelessRepeat of the file /goform/WifiExtraSet. The manipulation of the argument mac leads to buffer overflow. The attack ma...

9.8

CVE-2025-29462

Exploit
  • EPSS 0.45%
  • Veröffentlicht 03.04.2025 00:00:00
  • Zuletzt bearbeitet 22.04.2025 16:33:41

A buffer overflow vulnerability has been discovered in Tenda Ac15 V15.13.07.13. The vulnerability occurs when the webCgiGetUploadFile function calls the socketRead function to process HTTP request messages, resulting in the overwriting of a buffer on...

6.5

CVE-2025-25634

Exploit
  • EPSS 0.12%
  • Veröffentlicht 05.03.2025 21:15:19
  • Zuletzt bearbeitet 10.04.2025 18:17:11

A vulnerability has been found in Tenda AC15 15.03.05.19 in the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument src leads to stack-based buffer overflow.