Vulnerabilities > Tenda > Ac18 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2025-01-16 CVE-2024-57583 Command Injection vulnerability in Tenda Ac18 Firmware 15.03.05.19
Tenda AC18 V15.03.05.19 was discovered to contain a command injection vulnerability via the usbName parameter in the formSetSambaConf function.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2025-01-16 CVE-2024-57582 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the startIP parameter in the formSetPPTPServer function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2025-01-16 CVE-2024-57581 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the firewallEn parameter in the formSetFirewallCfg function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2025-01-16 CVE-2024-57580 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the devName parameter in the formSetDeviceName function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2025-01-16 CVE-2024-57579 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the limitSpeedUp parameter in the formSetClientState function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2025-01-16 CVE-2024-57575 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the ssid parameter in the form_fast_setting_wifi_set function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2024-03-24 CVE-2024-2854 Unspecified vulnerability in Tenda Ac18 Firmware 15.03.05.05
A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05.
network
low complexity
tenda
critical
 9.8
9.8
2024-03-12 CVE-2024-28553 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.05
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the entrys parameter fromAddressNat function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2024-03-12 CVE-2024-28535 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.05
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the mitInterface parameter of fromAddressNat function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-11-20 CVE-2023-38823 Classic Buffer Overflow vulnerability in Tenda products
Buffer Overflow vulnerability in Tenda Ac19 v.1.0, AC18, AC9 v.1.0, AC6 v.2.0 and v.1.0 allows a remote attacker to execute arbitrary code via the formSetCfm function in bin/httpd.
network
low complexity
tenda CWE-120
critical
 9.8
9.8