CVE-2024-24543
https://notcve.org/view.php?id=CVE-2024-24543
Buffer Overflow vulnerability in the function setSchedWifi in Tenda AC9 v.3.0, firmware version v.15.03.06.42_multi allows a remote attacker to cause a denial of service or run arbitrary code via crafted overflow data. Vulnerabilidad de desbordamiento de búfer en la función setSchedWifi en Tenda AC9 v.3.0, versión de firmware v.15.03.06.42_multi permite a un atacante remoto provocar una denegación de servicio o ejecutar código arbitrario a través de datos de desbordamiento manipulados. • https://github.com/TimeSeg/IOT_CVE/blob/main/tenda/AC9V3/0130/setSchedWifi.md • CWE-787: Out-of-bounds Write •
CVE-2023-41559
https://notcve.org/view.php?id=CVE-2023-41559
Tenda AC7 V1.0 V15.03.06.44, Tenda AC9 V3.0 V15.03.06.42_multi, and Tenda AC5 V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter page at url /goform/NatStaticSetting. • https://github.com/peris-navince/founded-0-days/blob/main/fromNatStaticSetting/1.md • CWE-787: Out-of-bounds Write •
CVE-2023-41560
https://notcve.org/view.php?id=CVE-2023-41560
Tenda AC9 V3.0 V15.03.06.42_multi was discovered to contain a stack overflow via parameter firewallEn at url /goform/SetFirewallCfg. • https://github.com/peris-navince/founded-0-days/blob/main/formSetFirewallCfg/1.md • CWE-787: Out-of-bounds Write •
CVE-2023-41561
https://notcve.org/view.php?id=CVE-2023-41561
Tenda AC9 V3.0 V15.03.06.42_multi and Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter startIp and endIp at url /goform/SetPptpServerCfg. • https://github.com/peris-navince/founded-0-days/blob/main/formSetPPTPServer/1.md • CWE-787: Out-of-bounds Write •
CVE-2023-41562
https://notcve.org/view.php?id=CVE-2023-41562
Tenda AC7 V1.0 V15.03.06.44, Tenda AC9 V3.0 V15.03.06.42_multi, and Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter time at url /goform/PowerSaveSet. • https://github.com/peris-navince/founded-0-days/blob/main/setSmartPowerManagement/1.md • CWE-787: Out-of-bounds Write •