Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Tenda Subscribe
Filtered by product Ac15
Total 52 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-30378 1 Tenda 2 Ac15, Ac15 Firmware 2023-04-28 N/A 9.8 CRITICAL
In Tenda AC15 V15.03.05.19, the function "sub_8EE8" contains a stack-based buffer overflow vulnerability.
CVE-2023-30376 1 Tenda 2 Ac15, Ac15 Firmware 2023-04-28 N/A 9.8 CRITICAL
In Tenda AC15 V15.03.05.19, the function "henan_pppoe_user" contains a stack-based buffer overflow vulnerability.
CVE-2023-30375 1 Tenda 2 Ac15, Ac15 Firmware 2023-04-28 N/A 9.8 CRITICAL
In Tenda AC15 V15.03.05.19, the function "getIfIp" contains a stack-based buffer overflow vulnerability.
CVE-2023-30373 1 Tenda 2 Ac15, Ac15 Firmware 2023-04-28 N/A 9.8 CRITICAL
In Tenda AC15 V15.03.05.19, the function "xian_pppoe_user" contains a stack-based buffer overflow vulnerability.
CVE-2023-30372 1 Tenda 2 Ac15, Ac15 Firmware 2023-04-28 N/A 9.8 CRITICAL
In Tenda AC15 V15.03.05.19, The function "xkjs_ver32" contains a stack-based buffer overflow vulnerability.
CVE-2023-30371 1 Tenda 2 Ac15, Ac15 Firmware 2023-04-28 N/A 9.8 CRITICAL
In Tenda AC15 V15.03.05.19, the function "sub_ED14" contains a stack-based buffer overflow vulnerability.
CVE-2023-30370 1 Tenda 2 Ac15, Ac15 Firmware 2023-04-28 N/A 9.8 CRITICAL
In Tenda AC15 V15.03.05.19, the function GetValue contains a stack-based buffer overflow vulnerability.
CVE-2023-30369 1 Tenda 2 Ac15, Ac15 Firmware 2023-04-28 N/A 9.8 CRITICAL
Tenda AC15 V15.03.05.19 is vulnerable to Buffer Overflow.
CVE-2022-44156 1 Tenda 2 Ac15, Ac15 Firmware 2022-11-22 N/A 7.5 HIGH
Tenda AC15 V15.03.05.19 is vulnerable to Buffer Overflow via function formSetIpMacBind.
CVE-2022-44167 1 Tenda 2 Ac15, Ac15 Firmware 2022-11-21 N/A 7.5 HIGH
Tenda AC15 V15.03.05.18 is avulnerable to Buffer Overflow via function formSetPPTPServer.
CVE-2022-44168 1 Tenda 2 Ac15, Ac15 Firmware 2022-11-21 N/A 7.5 HIGH
Tenda AC15 V15.03.05.18 is vulnerable to Buffer Overflow via function fromSetRouteStatic..
CVE-2022-44169 1 Tenda 2 Ac15, Ac15 Firmware 2022-11-21 N/A 7.5 HIGH
Tenda AC15 V15.03.05.18 is vulnerable to Buffer Overflow via function formSetVirtualSer.
CVE-2022-43259 1 Tenda 2 Ac15, Ac15 Firmware 2022-10-20 N/A 7.5 HIGH
Tenda AC15 V15.03.05.18 was discovered to contain a stack overflow via the timeZone parameter in the form_fast_setting_wifi_set function.
CVE-2022-40851 1 Tenda 2 Ac15, Ac15 Firmware 2022-09-23 N/A 9.8 CRITICAL
Tenda AC15 V15.03.05.19 contained a stack overflow via the function fromAddressNat.
CVE-2022-37175 1 Tenda 2 Ac15, Ac15 Firmware 2022-08-23 N/A 9.8 CRITICAL
Tenda ac15 firmware V15.03.05.18 httpd server has stack buffer overflow in /goform/formWifiBasicSet.
CVE-2020-10987 1 Tenda 2 Ac15, Ac15 Firmware 2021-07-21 10.0 HIGH 9.8 CRITICAL
The goform/setUsbUnload endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote attackers to execute arbitrary system commands via the deviceName POST parameter.
CVE-2020-15916 1 Tenda 2 Ac15, Ac15 Firmware 2020-07-27 10.0 HIGH 9.8 CRITICAL
goform/AdvSetLanip endpoint on Tenda AC15 AC1900 15.03.05.19 devices allows remote attackers to execute arbitrary system commands via shell metacharacters in the lanIp POST parameter.
CVE-2020-10988 1 Tenda 2 Ac15, Ac15 Firmware 2020-07-15 10.0 HIGH 9.8 CRITICAL
A hard-coded telnet credential in the tenda_login binary of Tenda AC15 AC1900 version 15.03.05.19 allows unauthenticated remote attackers to start a telnetd service on the device.
CVE-2020-10986 1 Tenda 2 Ac15, Ac15 Firmware 2020-07-15 7.1 HIGH 6.5 MEDIUM
A CSRF issue in the /goform/SysToolReboot endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote attackers to reboot the device and cause denial of service via a payload hosted by an attacker-controlled web page.
CVE-2020-10989 1 Tenda 2 Ac15, Ac15 Firmware 2020-07-15 4.3 MEDIUM 6.1 MEDIUM
An XSS issue in the /goform/WifiBasicSet endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote attackers to execute malicious payloads via the WifiName POST parameter.