Tenda

Ac5 Firmware

40 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2023-25219

  • EPSS 0.18%
  • Veröffentlicht 07.04.2023 02:15:08
  • Zuletzt bearbeitet 12.02.2025 21:15:11

Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromDhcpListClient function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.

9.8

CVE-2023-25220

  • EPSS 0.18%
  • Veröffentlicht 07.04.2023 02:15:08
  • Zuletzt bearbeitet 12.02.2025 21:15:12

Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the add_white_node function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.

9.8

CVE-2023-25215

  • EPSS 0.18%
  • Veröffentlicht 07.04.2023 02:15:07
  • Zuletzt bearbeitet 12.02.2025 21:15:11

Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.

9.8

CVE-2023-25214

  • EPSS 0.18%
  • Veröffentlicht 07.04.2023 02:15:07
  • Zuletzt bearbeitet 12.02.2025 21:15:11

Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the setSchedWifi function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.

9.8

CVE-2023-25213

  • EPSS 0.18%
  • Veröffentlicht 07.04.2023 02:15:07
  • Zuletzt bearbeitet 12.02.2025 22:15:29

Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the check_param_changed function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.

9.8

CVE-2023-25212

  • EPSS 0.18%
  • Veröffentlicht 07.04.2023 02:15:07
  • Zuletzt bearbeitet 13.02.2025 15:15:15

Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromSetWirelessRepeat function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.

9.8

CVE-2023-25211

  • EPSS 0.18%
  • Veröffentlicht 07.04.2023 02:15:07
  • Zuletzt bearbeitet 13.02.2025 15:15:15

Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the R7WebsSecurityHandler function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.

9.8

CVE-2023-25210

  • EPSS 0.18%
  • Veröffentlicht 07.04.2023 02:15:07
  • Zuletzt bearbeitet 13.02.2025 15:15:15

Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromSetSysTime function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.

9.8

CVE-2021-44971

  • EPSS 2.18%
  • Veröffentlicht 28.01.2022 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:31:45

Multiple Tenda devices are affected by authentication bypass, such as AC15V1.0 Firmware V15.03.05.20_multi?AC5V1.0 Firmware V15.03.06.48_multi and so on. an attacker can obtain sensitive information, and even combine it with authenticated command inj...

5.4

CVE-2021-3186

Exploit
  • EPSS 0.34%
  • Veröffentlicht 26.01.2021 18:16:28
  • Zuletzt bearbeitet 07.07.2025 17:21:17

A Stored Cross-site scripting (XSS) vulnerability in /main.html Wifi Settings in Tenda AC5 AC1200 version V15.03.06.47_multi allows remote attackers to inject arbitrary web script or HTML via the Wifi Name parameter.