cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-10280,https://securityvulnerability.io/vulnerability/CVE-2024-10280,Null Pointer Dereference Vulnerability in Tenda Routers,"A vulnerability has been identified in various models of Tenda AC series routers, compromising the functionality of the websReadEvent within the /goform/GetIPTV module. The flaw lies in the manipulation of the Content-Length argument, which can lead to null pointer dereference, potentially allowing remote attackers to exploit the issue. This vulnerability affects Tenda models AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500, and AC1206, up to a specific version. The public disclosure of this exploit raises significant security concerns for users of affected products.",Tenda,Ac15 Firmware,7.5,HIGH,0.0024900001008063555,false,false,false,false,,false,false,2024-10-23T14:15:00.000Z,0
CVE-2023-36103,https://securityvulnerability.io/vulnerability/CVE-2023-36103,Remote Command Injection in Tenda AC15 Network Device,"The Tenda AC15, specifically the firmware version V15.03.05.20, is susceptible to a command injection vulnerability in its goform/SetIPTVCfg interface. This flaw enables remote attackers to execute arbitrary commands on the device by sending specially crafted POST requests. The exploitation of this vulnerability can lead to unauthorized access and manipulation of the affected device, posing significant security risks for users' networks.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0017500000540167093,false,false,false,false,,false,false,2024-09-10T00:00:00.000Z,0
CVE-2023-39673,https://securityvulnerability.io/vulnerability/CVE-2023-39673,,Tenda AC15 V1.0BR_V15.03.05.18_multi_TD01 was discovered to contain a buffer overflow via the function FUN_00010e34().,Tenda,Ac15 Firmware,9.8,CRITICAL,0.0023499999660998583,false,false,false,false,,false,false,2023-08-18T03:15:00.000Z,0
CVE-2023-30375,https://securityvulnerability.io/vulnerability/CVE-2023-30375,Stack-Based Buffer Overflow in Tenda AC15 Router,"The Tenda AC15 router running firmware version V15.03.05.19 is vulnerable to a stack-based buffer overflow due to a flaw in the 'getIfIp' function. This vulnerability could be exploited by attackers to execute arbitrary code or crash the device, potentially compromising network integrity. Users are advised to update their firmware to mitigate this risk.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,false,false,false,,false,false,2023-04-24T00:00:00.000Z,0
CVE-2023-30373,https://securityvulnerability.io/vulnerability/CVE-2023-30373,Stack-Based Buffer Overflow in Tenda AC15 Router,"The Tenda AC15 router, specifically version V15.03.05.19, has a vulnerability in the 'xian_pppoe_user' function that can lead to a stack-based buffer overflow. This weakness could allow a remote attacker to execute arbitrary code, potentially compromising the device's integrity and affecting the security of the network. Users of this router are advised to apply necessary updates and implement security measures to mitigate the risks posed by this vulnerability.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,false,false,false,,false,false,2023-04-24T00:00:00.000Z,0
CVE-2023-30372,https://securityvulnerability.io/vulnerability/CVE-2023-30372,Stack-Based Buffer Overflow in Tenda AC15 Router,"The Tenda AC15 Router, specifically version V15.03.05.19, is affected by a stack-based buffer overflow vulnerability within the 'xkjs_ver32' function. This security flaw may allow attackers to execute arbitrary code, potentially compromising the integrity of the device and the network it operates within. Users are advised to review their device's security and apply recommended updates promptly to mitigate risks associated with this vulnerability.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,false,false,false,,false,false,2023-04-24T00:00:00.000Z,0
CVE-2023-30371,https://securityvulnerability.io/vulnerability/CVE-2023-30371,Stack-Based Buffer Overflow in Tenda AC15 Router,"The Tenda AC15 router, specifically version V15.03.05.19, is susceptible to a stack-based buffer overflow due to vulnerabilities in the function 'sub_ED14'. An attacker could exploit this flaw to execute arbitrary code, leading to potential control over the device and network disruption. The vulnerability underscores the importance of maintaining updated firmware to mitigate risks associated with network devices.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,false,false,false,,false,false,2023-04-24T00:00:00.000Z,0
CVE-2023-30369,https://securityvulnerability.io/vulnerability/CVE-2023-30369,Buffer Overflow Vulnerability in Tenda AC15 Router,"The Tenda AC15 router version V15.03.05.19 is susceptible to a buffer overflow vulnerability that may allow attackers to execute arbitrary code, potentially leading to unauthorized access or disruption of services. This issue highlights the importance of maintaining secure configurations and timely updates to safeguard against potential exploitation. For more details, refer to the provided reference.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,false,false,false,,false,false,2023-04-24T00:00:00.000Z,0
CVE-2023-30370,https://securityvulnerability.io/vulnerability/CVE-2023-30370,Stack-Based Buffer Overflow Vulnerability in Tenda AC15 Router,"The Tenda AC15 router, specifically version V15.03.05.19, is susceptible to a stack-based buffer overflow vulnerability in the GetValue function. This flaw can potentially allow attackers to execute arbitrary code or crash the system by sending specially crafted requests, endangering the security and integrity of the device and network.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,false,false,false,,false,false,2023-04-24T00:00:00.000Z,0
CVE-2023-30378,https://securityvulnerability.io/vulnerability/CVE-2023-30378,Stack-based Buffer Overflow in Tenda AC15 Router,"The Tenda AC15 router, specifically version V15.03.05.19, has a vulnerability in the function 'sub_8EE8' which could lead to a stack-based buffer overflow. This flaw could allow an attacker to execute arbitrary code or crash the device, posing serious security risks to users' network integrity.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,false,false,false,,false,false,2023-04-24T00:00:00.000Z,0
CVE-2023-30376,https://securityvulnerability.io/vulnerability/CVE-2023-30376,Stack-Based Buffer Overflow in Tenda AC15 Vulnerability,"The Tenda AC15 model version V15.03.05.19 has a vulnerability due to the 'henan_pppoe_user' function, which is susceptible to a stack-based buffer overflow. This flaw could allow an attacker to potentially execute arbitrary code, compromise system integrity, or lead to service interruptions. Users of this device should be aware of such vulnerabilities and take necessary precautions to safeguard their networks.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,false,false,false,,false,false,2023-04-24T00:00:00.000Z,0
CVE-2022-44168,https://securityvulnerability.io/vulnerability/CVE-2022-44168,,Tenda AC15 V15.03.05.18 is vulnerable to Buffer Overflow via function fromSetRouteStatic..,Tenda,Ac15 Firmware,7.5,HIGH,0.0008900000248104334,false,false,false,false,,false,false,2022-11-21T00:00:00.000Z,0
CVE-2022-44156,https://securityvulnerability.io/vulnerability/CVE-2022-44156,,Tenda AC15 V15.03.05.19 is vulnerable to Buffer Overflow via function formSetIpMacBind.,Tenda,Ac15 Firmware,7.5,HIGH,0.0008900000248104334,false,false,false,false,,false,false,2022-11-21T00:00:00.000Z,0
CVE-2022-44169,https://securityvulnerability.io/vulnerability/CVE-2022-44169,,Tenda AC15 V15.03.05.18 is vulnerable to Buffer Overflow via function formSetVirtualSer.,Tenda,Ac15 Firmware,7.5,HIGH,0.0008900000248104334,false,false,false,false,,false,false,2022-11-21T00:00:00.000Z,0
CVE-2022-44167,https://securityvulnerability.io/vulnerability/CVE-2022-44167,,Tenda AC15 V15.03.05.18 is avulnerable to Buffer Overflow via function formSetPPTPServer.,Tenda,Ac15 Firmware,7.5,HIGH,0.0008900000248104334,false,false,false,false,,false,false,2022-11-21T00:00:00.000Z,0
CVE-2022-43259,https://securityvulnerability.io/vulnerability/CVE-2022-43259,,Tenda AC15 V15.03.05.18 was discovered to contain a stack overflow via the timeZone parameter in the form_fast_setting_wifi_set function.,Tenda,Ac15 Firmware,7.5,HIGH,0.0008900000248104334,false,false,false,false,,false,false,2022-10-18T00:00:00.000Z,0
CVE-2022-40851,https://securityvulnerability.io/vulnerability/CVE-2022-40851,,Tenda AC15 V15.03.05.19 contained a stack overflow via the function fromAddressNat.,Tenda,Ac15 Firmware,9.8,CRITICAL,0.002219999907538295,false,false,false,false,,false,false,2022-09-23T14:02:51.000Z,0
CVE-2022-40853,https://securityvulnerability.io/vulnerability/CVE-2022-40853,,Tenda AC15 router V15.03.05.19 contains a stack overflow via the list parameter at /goform/fast_setting_wifi_set,Tenda,Ac15 Firmware,9.8,CRITICAL,0.002219999907538295,false,false,false,false,,false,false,2022-09-23T13:59:58.000Z,0
CVE-2022-40860,https://securityvulnerability.io/vulnerability/CVE-2022-40860,,Tenda AC15 router V15.03.05.19 contains a stack overflow vulnerability in the function formSetQosBand->FUN_0007dd20 with request /goform/SetNetControlList,Tenda,Ac15 Firmware,9.8,CRITICAL,0.002219999907538295,false,false,false,false,,false,false,2022-09-23T13:47:20.000Z,0
CVE-2022-40862,https://securityvulnerability.io/vulnerability/CVE-2022-40862,,Tenda AC15 and AC18 router V15.03.05.19 contains stack overflow vulnerability in the function fromNatStaticSetting with the request /goform/NatStaticSetting,Tenda,Ac15 Firmware,9.8,CRITICAL,0.00279000005684793,false,false,false,false,,false,false,2022-09-23T13:45:25.000Z,0
CVE-2022-40864,https://securityvulnerability.io/vulnerability/CVE-2022-40864,,Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function setSmartPowerManagement with the request /goform/PowerSaveSet,Tenda,Ac15 Firmware,9.8,CRITICAL,0.00279000005684793,false,false,false,false,,false,false,2022-09-23T13:38:53.000Z,0
CVE-2022-40865,https://securityvulnerability.io/vulnerability/CVE-2022-40865,,Tenda AC15 and AC18 routers V15.03.05.19 contain heap overflow vulnerabilities in the function setSchedWifi with the request /goform/openSchedWifi/,Tenda,Ac15 Firmware,9.8,CRITICAL,0.00279000005684793,false,false,false,false,,false,false,2022-09-23T13:35:42.000Z,0
CVE-2022-40869,https://securityvulnerability.io/vulnerability/CVE-2022-40869,,"Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function fromDhcpListClient with a combined parameter ""list*"" (""%s%d"",""list"").",Tenda,Ac15 Firmware,9.8,CRITICAL,0.00279000005684793,false,false,false,false,,false,false,2022-09-23T13:32:22.000Z,0
CVE-2022-38326,https://securityvulnerability.io/vulnerability/CVE-2022-38326,,Tenda AC15 WiFi Router V15.03.05.19_multi and AC18 WiFi Router V15.03.05.19_multi were discovered to contain a buffer overflow via the page parameter at /goform/NatStaticSetting.,Tenda,Ac15 Firmware,9.8,CRITICAL,0.0020099999383091927,false,false,false,false,,false,false,2022-09-15T19:01:38.000Z,0
CVE-2022-38325,https://securityvulnerability.io/vulnerability/CVE-2022-38325,,Tenda AC15 WiFi Router V15.03.05.19_multi and AC18 WiFi Router V15.03.05.19_multi were discovered to contain a buffer overflow via the filePath parameter at /goform/expandDlnaFile.,Tenda,Ac15 Firmware,9.8,CRITICAL,0.0020099999383091927,false,false,false,false,,false,false,2022-09-15T19:01:37.000Z,0