Tenda

Ac18

28 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2025-14993

Exploit
  • EPSS 0.11%
  • Veröffentlicht 21.12.2025 04:32:06
  • Zuletzt bearbeitet 31.12.2025 15:52:33

A vulnerability was detected in Tenda AC18 15.03.05.05. This affects the function sprintf of the file /goform/SetDlnaCfg of the component HTTP Request Handler. The manipulation of the argument scanList results in stack-based buffer overflow. The atta...

8.8

CVE-2025-14992

Exploit
  • EPSS 0.11%
  • Veröffentlicht 21.12.2025 04:02:07
  • Zuletzt bearbeitet 31.12.2025 19:24:32

A security vulnerability has been detected in Tenda AC18 15.03.05.05. The impacted element is the function strcpy of the file /goform/GetParentControlInfo of the component HTTP Request Handler. The manipulation of the argument mac leads to stack-base...

5.4

CVE-2025-63834

Exploit
  • EPSS 0.05%
  • Veröffentlicht 10.11.2025 00:00:00
  • Zuletzt bearbeitet 01.12.2025 20:15:54

A stored cross-site scripting (XSS) vulnerability was discovered in Tenda AC18 v15.03.05.05_multi. The vulnerability exists in the ssid parameter of the wireless settings. Remote attackers can inject malicious payloads that execute when any user visi...

8.8

CVE-2025-63835

Exploit
  • EPSS 0.27%
  • Veröffentlicht 10.11.2025 00:00:00
  • Zuletzt bearbeitet 18.11.2025 17:16:13

A stack-based buffer overflow vulnerability was discovered in Tenda AC18 v15.03.05.05_multi. The vulnerability exists in the guestSsid parameter of the /goform/WifiGuestSet interface. Remote attackers can exploit this vulnerability by sending oversiz...

8.8

CVE-2025-11328

Exploit
  • EPSS 0.21%
  • Veröffentlicht 06.10.2025 08:32:07
  • Zuletzt bearbeitet 07.10.2025 17:01:37

A vulnerability was detected in Tenda AC18 15.03.05.19(6318). This issue affects some unknown processing of the file /goform/SetDDNSCfg. The manipulation of the argument ddnsEn results in stack-based buffer overflow. It is possible to launch the atta...

8.8

CVE-2025-11327

Exploit
  • EPSS 0.21%
  • Veröffentlicht 06.10.2025 08:02:06
  • Zuletzt bearbeitet 07.10.2025 17:01:49

A security vulnerability has been detected in Tenda AC18 15.03.05.19(6318). This vulnerability affects unknown code of the file /goform/SetUpnpCfg. The manipulation of the argument upnpEn leads to stack-based buffer overflow. It is possible to initia...

9

CVE-2025-11326

Exploit
  • EPSS 0.21%
  • Veröffentlicht 06.10.2025 07:32:07
  • Zuletzt bearbeitet 24.02.2026 07:16:26

A weakness has been identified in Tenda AC18 15.03.05.19(6318). This affects an unknown part of the file /goform/WifiMacFilterSet. Executing a manipulation of the argument wifi_chkHz can lead to stack-based buffer overflow. The attack may be performe...

9

CVE-2025-11325

Exploit
  • EPSS 0.19%
  • Veröffentlicht 06.10.2025 07:02:07
  • Zuletzt bearbeitet 24.02.2026 07:16:26

A security flaw has been discovered in Tenda AC18 15.03.05.19(6318). Affected by this issue is some unknown functionality of the file /goform/fast_setting_pppoe_set. Performing a manipulation of the argument Username results in stack-based buffer ove...

8.8

CVE-2025-11324

Exploit
  • EPSS 0.19%
  • Veröffentlicht 06.10.2025 06:32:06
  • Zuletzt bearbeitet 07.10.2025 17:02:52

A vulnerability was identified in Tenda AC18 15.03.05.19(6318). Affected by this vulnerability is an unknown functionality of the file /goform/setNotUpgrade. Such manipulation of the argument newVersion leads to stack-based buffer overflow. The attac...

7.5

CVE-2025-60662

Exploit
  • EPSS 0.07%
  • Veröffentlicht 02.10.2025 16:15:38
  • Zuletzt bearbeitet 07.10.2025 17:44:04

Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the wanSpeed parameter in the fromAdvSetMacMtuWan function.