CVSS: 8.6EPSS: 0%CPEs: 3EXPL: 1CVE-2025-0528 – Tenda AC8/AC10/AC18 HTTP Request telnet command injection
https://notcve.org/view.php?id=CVE-2025-0528
17 Jan 2025 — A vulnerability, which was classified as critical, has been found in Tenda AC8, AC10 and AC18 16.03.10.20. Affected by this issue is some unknown functionality of the file /goform/telnet of the component HTTP Request Handler. The manipulation leads to command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/Pr0b1em/IoT/blob/master/TendaAC10v16.03.10.20telnet.md • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-57579
https://notcve.org/view.php?id=CVE-2024-57579
16 Jan 2025 — Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the limitSpeedUp parameter in the formSetClientState function. • https://github.com/qijiale/Tenda/tree/main/6 • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-57580
https://notcve.org/view.php?id=CVE-2024-57580
16 Jan 2025 — Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the devName parameter in the formSetDeviceName function. • https://github.com/qijiale/Tenda/tree/main/7 • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-57581
https://notcve.org/view.php?id=CVE-2024-57581
16 Jan 2025 — Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the firewallEn parameter in the formSetFirewallCfg function. • https://github.com/qijiale/Tenda/tree/main/8 • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-57582
https://notcve.org/view.php?id=CVE-2024-57582
16 Jan 2025 — Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the startIP parameter in the formSetPPTPServer function. • https://github.com/qijiale/Tenda/tree/main/9 • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-57583
https://notcve.org/view.php?id=CVE-2024-57583
16 Jan 2025 — Tenda AC18 V15.03.05.19 was discovered to contain a command injection vulnerability via the usbName parameter in the formSetSambaConf function. • https://github.com/qijiale/Tenda/tree/main/10 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 7.1EPSS: 0%CPEs: 22EXPL: 1CVE-2024-10280 – Tenda AC6/AC7/AC8/AC9/AC10/AC10U/AC15/AC18/AC500/AC1206 GetIPTV websReadEvent null pointer dereference
https://notcve.org/view.php?id=CVE-2024-10280
23 Oct 2024 — A vulnerability was found in Tenda AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500 and AC1206 up to 20241022. It has been rated as problematic. This issue affects the function websReadEvent of the file /goform/GetIPTV. The manipulation of the argument Content-Length leads to null pointer dereference. The attack may be initiated remotely. • https://github.com/JohenanLi/router_vuls/blob/main/websReadEvent/websReadEvent.md • CWE-476: NULL Pointer Dereference •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-41630
https://notcve.org/view.php?id=CVE-2024-41630
31 Jul 2024 — Stack-based buffer overflow vulnerability in Tenda AC18 V15.03.3.10_EN allows a remote attacker to execute arbitrary code via the ssid parameter at ip/goform/fast_setting_wifi_set. • https://palm-vertebra-fe9.notion.site/form_fast_setting_wifi_set-fd47294cf4bb460bb95f804d39e53f34 • CWE-121: Stack-based Buffer Overflow •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-33835
https://notcve.org/view.php?id=CVE-2024-33835
01 May 2024 — Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the remoteIp parameter from formSetSafeWanWebMan function. Tenda AC18 V15.03.05.05 tiene una vulnerabilidad de desbordamiento de pila en el parámetro remotoIp de la función formSetSafeWanWebMan. • https://github.com/isBigChen/iot/blob/main/tenda/formSetSafeWanWebMan.md • CWE-121: Stack-based Buffer Overflow •
CVSS: 9.7EPSS: 1%CPEs: 1EXPL: 0CVE-2024-30891
https://notcve.org/view.php?id=CVE-2024-30891
05 Apr 2024 — A command injection vulnerability exists in /goform/exeCommand in Tenda AC18 v15.03.05.05, which allows attackers to construct cmdinput parameters for arbitrary command execution. Existe una vulnerabilidad de inyección de comandos en /goform/exeCommand en Tenda AC18 v15.03.05.05, que permite a los atacantes construir parámetros cmdinput para la ejecución de comandos arbitrarios. • https://github.com/Lantern-r/IoT-vuln/blob/main/Tenda/AC18/formexeCommand.md • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •