Tenda

Ac18 Firmware

94 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2025-11121

Exploit
  • EPSS 0.4%
  • Veröffentlicht 28.09.2025 22:15:31
  • Zuletzt bearbeitet 03.10.2025 13:45:50

A security vulnerability has been detected in Tenda AC18 15.03.05.19. The impacted element is an unknown function of the file /goform/AdvSetLanip. The manipulation of the argument lanIp leads to command injection. The attack can be initiated remotely...

9

CVE-2025-11120

Exploit
  • EPSS 0.29%
  • Veröffentlicht 28.09.2025 21:15:51
  • Zuletzt bearbeitet 03.10.2025 13:42:17

A weakness has been identified in Tenda AC8 16.03.34.06. The affected element is the function formSetServerConfig of the file /goform/SetServerConfig. Executing manipulation can lead to buffer overflow. It is possible to launch the attack remotely. T...

8.8

CVE-2025-9023

Exploit
  • EPSS 0.37%
  • Veröffentlicht 15.08.2025 08:32:07
  • Zuletzt bearbeitet 03.10.2025 15:03:22

A vulnerability has been found in Tenda AC7 and AC18 15.03.05.19/15.03.06.44. Affected is the function formSetSchedLed of the file /goform/SetLEDCfg. The manipulation of the argument Time leads to buffer overflow. It is possible to launch the attack ...

7.4

CVE-2025-8182

  • EPSS 0.04%
  • Veröffentlicht 26.07.2025 08:32:09
  • Zuletzt bearbeitet 01.08.2025 20:05:29

A vulnerability has been found in Tenda AC18 15.03.05.19 and classified as problematic. This vulnerability affects unknown code of the file /etc_ro/smb.conf of the component Samba. The manipulation leads to weak password requirements. The attack can ...

8.8

CVE-2025-5609

Exploit
  • EPSS 0.2%
  • Veröffentlicht 04.06.2025 20:15:25
  • Zuletzt bearbeitet 17.06.2025 20:41:04

A vulnerability classified as critical was found in Tenda AC18 15.03.05.05. Affected by this vulnerability is the function fromadvsetlanip of the file /goform/AdvSetLanip. The manipulation of the argument lanMask leads to buffer overflow. The attack ...

8.8

CVE-2025-5608

Exploit
  • EPSS 0.2%
  • Veröffentlicht 04.06.2025 20:15:24
  • Zuletzt bearbeitet 17.06.2025 20:41:00

A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the function formsetreboottimer of the file /goform/SetSysAutoRebbotCfg. The manipulation of the argument rebootTime leads to buffer overflow. It is possible...

8.8

CVE-2025-5607

Exploit
  • EPSS 0.2%
  • Veröffentlicht 04.06.2025 19:31:07
  • Zuletzt bearbeitet 17.06.2025 20:40:56

A vulnerability was found in Tenda AC18 15.03.05.05. It has been rated as critical. This issue affects the function formSetPPTPUserList of the file /goform/setPptpUserList. The manipulation of the argument list leads to buffer overflow. The attack ma...

9.8

CVE-2025-5606

Exploit
  • EPSS 1.51%
  • Veröffentlicht 04.06.2025 19:00:21
  • Zuletzt bearbeitet 10.06.2025 15:08:33

A vulnerability was found in Tenda AC18 15.03.05.05. It has been declared as critical. This vulnerability affects the function formSetIptv of the file /goform/SetIPTVCfg. The manipulation of the argument list leads to command injection. The attack ca...

7.2

CVE-2025-0528

Exploit
  • EPSS 0.92%
  • Veröffentlicht 17.01.2025 15:15:12
  • Zuletzt bearbeitet 28.05.2025 14:42:21

A vulnerability, which was classified as critical, has been found in Tenda AC8, AC10 and AC18 16.03.10.20. Affected by this issue is some unknown functionality of the file /goform/telnet of the component HTTP Request Handler. The manipulation leads t...

9.8

CVE-2024-57580

Exploit
  • EPSS 0.17%
  • Veröffentlicht 16.01.2025 21:15:17
  • Zuletzt bearbeitet 18.03.2025 19:15:46

Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the devName parameter in the formSetDeviceName function.