Vulnerabilities > Tenda > AC9 Firmware > 5.03.06.42.multi

DATE CVE VULNERABILITY TITLE RISK
2023-08-30 CVE-2023-41552 Out-of-bounds Write vulnerability in Tenda AC7 Firmware and AC9 Firmware
Tenda AC7 V1.0 V15.03.06.44 and Tenda AC9 V3.0 V15.03.06.42_multi were discovered to contain a stack overflow via parameter ssid at url /goform/fast_setting_wifi_set.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-30 CVE-2023-41553 Out-of-bounds Write vulnerability in Tenda AC5 Firmware and AC9 Firmware
Tenda AC9 V3.0 V15.03.06.42_multi and Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter list at url /goform/SetStaticRouteCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-30 CVE-2023-41554 Out-of-bounds Write vulnerability in Tenda AC9 Firmware 5.03.06.42Multi
Tenda AC9 V3.0 V15.03.06.42_multi was discovered to contain a stack overflow via parameter wpapsk_crypto at url /goform/WifiExtraSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-30 CVE-2023-41556 Out-of-bounds Write vulnerability in Tenda AC5 Firmware, AC7 Firmware and AC9 Firmware
Tenda AC7 V1.0 V15.03.06.44, Tenda AC9 V3.0 V15.03.06.42_multi, and Tenda AC5 V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter list at url /goform/SetIpMacBind.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2019-04-25 CVE-2018-14559 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tenda Ac10 Firmware, AC7 Firmware and AC9 Firmware
An issue was discovered on Tenda AC7 devices with firmware through V15.03.06.44_CN(AC7), AC9 devices with firmware through V15.03.05.19(6318)_CN(AC9), and AC10 devices with firmware through V15.03.06.23_CN(AC10).
network
low complexity
tenda CWE-119
7.5
7.5
2019-04-25 CVE-2018-14557 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tenda Ac10 Firmware, AC7 Firmware and AC9 Firmware
An issue was discovered on Tenda AC7 devices with firmware through V15.03.06.44_CN(AC7), AC9 devices with firmware through V15.03.05.19(6318)_CN(AC9), and AC10 devices with firmware through V15.03.06.23_CN(AC10).
network
low complexity
tenda CWE-119
7.5
7.5
2018-10-30 CVE-2018-14558 OS Command Injection vulnerability in Tenda Ac10 Firmware, AC7 Firmware and AC9 Firmware
An issue was discovered on Tenda AC7 devices with firmware through V15.03.06.44_CN(AC7), AC9 devices with firmware through V15.03.05.19(6318)_CN(AC9), and AC10 devices with firmware through V15.03.06.23_CN(AC10).
network
low complexity
tenda CWE-78
critical
 9.8
9.8