Vulnerabilities > Tenda > Ac18 Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-10-23 CVE-2024-10280 NULL Pointer Dereference vulnerability in Tenda products
A vulnerability was found in Tenda AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500 and AC1206 up to 20241022.
network
low complexity
tenda CWE-476
7.5
2024-03-24 CVE-2024-2854 Unspecified vulnerability in Tenda Ac18 Firmware 15.03.05.05
A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05.
network
low complexity
tenda
critical
9.8
2024-03-12 CVE-2024-28535 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.05
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the mitInterface parameter of fromAddressNat function.
network
low complexity
tenda CWE-787
critical
9.8
2024-03-12 CVE-2024-28553 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.05
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the entrys parameter fromAddressNat function.
network
low complexity
tenda CWE-787
critical
9.8
2023-11-20 CVE-2023-38823 Classic Buffer Overflow vulnerability in Tenda products
Buffer Overflow vulnerability in Tenda Ac19 v.1.0, AC18, AC9 v.1.0, AC6 v.2.0 and v.1.0 allows a remote attacker to execute arbitrary code via the formSetCfm function in bin/httpd.
network
low complexity
tenda CWE-120
critical
9.8
2023-05-05 CVE-2023-30135 Command Injection vulnerability in Tenda Ac18 Firmware 15.03.05.19(6318)Cn
Tenda AC18 v15.03.05.19(6318_)_cn was discovered to contain a command injection vulnerability via the deviceName parameter in the setUsbUnload function.
network
low complexity
tenda CWE-77
critical
9.8
2023-01-26 CVE-2023-24164 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/FUN_000c2318.
network
low complexity
tenda CWE-787
critical
9.8
2023-01-26 CVE-2023-24165 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/initIpAddrInfo.
network
low complexity
tenda CWE-787
critical
9.8
2023-01-26 CVE-2023-24166 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/formWifiBasicSet.
network
low complexity
tenda CWE-787
critical
9.8
2023-01-26 CVE-2023-24167 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/add_white_node.
network
low complexity
tenda CWE-787
critical
9.8