CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-40853
https://notcve.org/view.php?id=CVE-2022-40853
23 Sep 2022 — Tenda AC15 router V15.03.05.19 contains a stack overflow via the list parameter at /goform/fast_setting_wifi_set El router Tenda AC15 versión V15.03.05.19, contiene un desbordamiento de pila por medio del parámetro list en /goform/fast_setting_wifi_set • https://github.com/CPSeek/Router-vuls/blob/main/Tenda/AC15/form_fast_setting_wifi_set.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-40860
https://notcve.org/view.php?id=CVE-2022-40860
23 Sep 2022 — Tenda AC15 router V15.03.05.19 contains a stack overflow vulnerability in the function formSetQosBand->FUN_0007dd20 with request /goform/SetNetControlList El router Tenda AC15 versión V15.03.05.19, contiene una vulnerabilidad de desbordamiento de pila en la función formSetQosBand-)FUN_0007dd20 con la petición /goform/SetNetControlList • https://github.com/CPSeek/Router-vuls/blob/main/Tenda/AC15/formSetQosBand.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 2CVE-2022-40862
https://notcve.org/view.php?id=CVE-2022-40862
23 Sep 2022 — Tenda AC15 and AC18 router V15.03.05.19 contains stack overflow vulnerability in the function fromNatStaticSetting with the request /goform/NatStaticSetting Los routers Tenda AC15 y AC18 versiones V15.03.05.19 contienen una vulnerabilidad de desbordamiento de pila en la función fromNatStaticSetting con la petición /goform/NatStaticSetting • https://github.com/CPSeek/Router-vuls/blob/main/Tenda/AC15/fromNatStaticSetting.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 2CVE-2022-40864
https://notcve.org/view.php?id=CVE-2022-40864
23 Sep 2022 — Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function setSmartPowerManagement with the request /goform/PowerSaveSet Los routers Tenda AC15 y AC18 versiones V15.03.05.19, contienen vulnerabilidades de desbordamiento de pila en la función setSmartPowerManagement con la petición /goform/PowerSaveSet • https://github.com/CPSeek/Router-vuls/blob/main/Tenda/AC15/setSmartPowerManagement.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 2CVE-2022-40865
https://notcve.org/view.php?id=CVE-2022-40865
23 Sep 2022 — Tenda AC15 and AC18 routers V15.03.05.19 contain heap overflow vulnerabilities in the function setSchedWifi with the request /goform/openSchedWifi/ Los routers Tenda AC15 y AC18 V15.03.05.19, contienen vulnerabilidades de desbordamiento de pila en la función setSchedWifi con la petición /goform/openSchedWifi/ • https://github.com/CPSeek/Router-vuls/blob/main/Tenda/AC15/setSchedWifi.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 2CVE-2022-40869
https://notcve.org/view.php?id=CVE-2022-40869
23 Sep 2022 — Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function fromDhcpListClient with a combined parameter "list*" ("%s%d","list"). Los routers Tenda AC15 y AC18 V15.03.05.19, contienen vulnerabilidades de desbordamiento de pila en la función fromDhcpListClient con un parámetro combinado "list*" ("%s%d", "list"). • https://github.com/CPSeek/Router-vuls/blob/main/Tenda/AC15/fromDhcpListClient-list.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 1CVE-2022-38326
https://notcve.org/view.php?id=CVE-2022-38326
15 Sep 2022 — Tenda AC15 WiFi Router V15.03.05.19_multi and AC18 WiFi Router V15.03.05.19_multi were discovered to contain a buffer overflow via the page parameter at /goform/NatStaticSetting. Se ha detectado que los routers WiFi Tenda AC15 V15.03.05.19_multi y AC18 V15.03.05.19_multi, contienen un desbordamiento de búfer por medio del parámetro de página en /goform/NatStaticSetting • https://github.com/1160300418/Vuls/blob/main/Tenda/AC/Vul_NatStaticSetting.md • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 1CVE-2022-38325
https://notcve.org/view.php?id=CVE-2022-38325
15 Sep 2022 — Tenda AC15 WiFi Router V15.03.05.19_multi and AC18 WiFi Router V15.03.05.19_multi were discovered to contain a buffer overflow via the filePath parameter at /goform/expandDlnaFile. Se ha detectado que los routers WiFi Tenda AC15 versión V15.03.05.19_multi y AC18 versión V15.03.05.19_multi, contienen un desbordamiento de búfer por medio del parámetro filePath en /goform/expandDlnaFile • https://github.com/1160300418/Vuls/blob/main/Tenda/AC/Vul_expandDlnaFile.md • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.8EPSS: 1%CPEs: 2EXPL: 1CVE-2021-44352
https://notcve.org/view.php?id=CVE-2021-44352
03 Dec 2021 — A Stack-based Buffer Overflow vulnerability exists in the Tenda AC15 V15.03.05.18_multi device via the list parameter in a post request in goform/SetIpMacBind. Existe una vulnerabilidad de desbordamiento del búfer basada en la pila en el dispositivo Tenda AC15 V15.03.05.18_multi a través del parámetro list en una solicitud posterior en goform/SetIpMacBind • https://github.com/zhlu32/cve/blob/main/tenda/Tenda-ac15-buffer-overflow.md • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 2%CPEs: 10EXPL: 1CVE-2020-13389
https://notcve.org/view.php?id=CVE-2020-13389
22 May 2020 — An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the /goform/openSchedWifi schedStartTime and schedEndTime parameters for a POST request, a value is directly used in a strcpy to a local variable placed on the stack, which overwrites the return address of a funct... • https://joel-malwarebenchmark.github.io • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •