cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-10280,https://securityvulnerability.io/vulnerability/CVE-2024-10280,Null Pointer Dereference Vulnerability in Tenda Routers,"A vulnerability has been identified in various models of Tenda AC series routers, compromising the functionality of the websReadEvent within the /goform/GetIPTV module. The flaw lies in the manipulation of the Content-Length argument, which can lead to null pointer dereference, potentially allowing remote attackers to exploit the issue. This vulnerability affects Tenda models AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500, and AC1206, up to a specific version. The public disclosure of this exploit raises significant security concerns for users of affected products.",Tenda,Ac15 Firmware,7.5,HIGH,0.0024900001008063555,false,,false,false,false,,,false,false,,2024-10-23T14:15:00.000Z,0
CVE-2023-36103,https://securityvulnerability.io/vulnerability/CVE-2023-36103,Remote Command Injection in Tenda AC15 Network Device,"The Tenda AC15, specifically the firmware version V15.03.05.20, is susceptible to a command injection vulnerability in its goform/SetIPTVCfg interface. This flaw enables remote attackers to execute arbitrary commands on the device by sending specially crafted POST requests. The exploitation of this vulnerability can lead to unauthorized access and manipulation of the affected device, posing significant security risks for users' networks.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0017500000540167093,false,,false,false,false,,,false,false,,2024-09-10T00:00:00.000Z,0
CVE-2023-39673,https://securityvulnerability.io/vulnerability/CVE-2023-39673,Buffer Overflow Vulnerability in Tenda AC15 Router,"The Tenda AC15 router has been found to exhibit a buffer overflow vulnerability through the function FUN_00010e34(). This flaw could allow attackers to exploit the device, potentially leading to unauthorized access or execution of arbitrary code, emphasizing the need for immediate user awareness and prompt patching.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.002689999993890524,false,,false,false,false,,,false,false,,2023-08-18T03:15:00.000Z,0
CVE-2023-30370,https://securityvulnerability.io/vulnerability/CVE-2023-30370,Stack-Based Buffer Overflow Vulnerability in Tenda AC15 Router,"The Tenda AC15 router, specifically version V15.03.05.19, is susceptible to a stack-based buffer overflow vulnerability in the GetValue function. This flaw can potentially allow attackers to execute arbitrary code or crash the system by sending specially crafted requests, endangering the security and integrity of the device and network.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-04-24T00:00:00.000Z,0
CVE-2023-30369,https://securityvulnerability.io/vulnerability/CVE-2023-30369,Buffer Overflow Vulnerability in Tenda AC15 Router,"The Tenda AC15 router version V15.03.05.19 is susceptible to a buffer overflow vulnerability that may allow attackers to execute arbitrary code, potentially leading to unauthorized access or disruption of services. This issue highlights the importance of maintaining secure configurations and timely updates to safeguard against potential exploitation. For more details, refer to the provided reference.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-04-24T00:00:00.000Z,0
CVE-2023-30375,https://securityvulnerability.io/vulnerability/CVE-2023-30375,Stack-Based Buffer Overflow in Tenda AC15 Router,"The Tenda AC15 router running firmware version V15.03.05.19 is vulnerable to a stack-based buffer overflow due to a flaw in the 'getIfIp' function. This vulnerability could be exploited by attackers to execute arbitrary code or crash the device, potentially compromising network integrity. Users are advised to update their firmware to mitigate this risk.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-04-24T00:00:00.000Z,0
CVE-2023-30376,https://securityvulnerability.io/vulnerability/CVE-2023-30376,Stack-Based Buffer Overflow in Tenda AC15 Vulnerability,"The Tenda AC15 model version V15.03.05.19 has a vulnerability due to the 'henan_pppoe_user' function, which is susceptible to a stack-based buffer overflow. This flaw could allow an attacker to potentially execute arbitrary code, compromise system integrity, or lead to service interruptions. Users of this device should be aware of such vulnerabilities and take necessary precautions to safeguard their networks.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-04-24T00:00:00.000Z,0
CVE-2023-30371,https://securityvulnerability.io/vulnerability/CVE-2023-30371,Stack-Based Buffer Overflow in Tenda AC15 Router,"The Tenda AC15 router, specifically version V15.03.05.19, is susceptible to a stack-based buffer overflow due to vulnerabilities in the function 'sub_ED14'. An attacker could exploit this flaw to execute arbitrary code, leading to potential control over the device and network disruption. The vulnerability underscores the importance of maintaining updated firmware to mitigate risks associated with network devices.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-04-24T00:00:00.000Z,0
CVE-2023-30372,https://securityvulnerability.io/vulnerability/CVE-2023-30372,Stack-Based Buffer Overflow in Tenda AC15 Router,"The Tenda AC15 Router, specifically version V15.03.05.19, is affected by a stack-based buffer overflow vulnerability within the 'xkjs_ver32' function. This security flaw may allow attackers to execute arbitrary code, potentially compromising the integrity of the device and the network it operates within. Users are advised to review their device's security and apply recommended updates promptly to mitigate risks associated with this vulnerability.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-04-24T00:00:00.000Z,0
CVE-2023-30373,https://securityvulnerability.io/vulnerability/CVE-2023-30373,Stack-Based Buffer Overflow in Tenda AC15 Router,"The Tenda AC15 router, specifically version V15.03.05.19, has a vulnerability in the 'xian_pppoe_user' function that can lead to a stack-based buffer overflow. This weakness could allow a remote attacker to execute arbitrary code, potentially compromising the device's integrity and affecting the security of the network. Users of this router are advised to apply necessary updates and implement security measures to mitigate the risks posed by this vulnerability.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-04-24T00:00:00.000Z,0
CVE-2023-30378,https://securityvulnerability.io/vulnerability/CVE-2023-30378,Stack-based Buffer Overflow in Tenda AC15 Router,"The Tenda AC15 router, specifically version V15.03.05.19, has a vulnerability in the function 'sub_8EE8' which could lead to a stack-based buffer overflow. This flaw could allow an attacker to execute arbitrary code or crash the device, posing serious security risks to users' network integrity.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-04-24T00:00:00.000Z,0
CVE-2022-44169,https://securityvulnerability.io/vulnerability/CVE-2022-44169,Buffer Overflow Vulnerability in Tenda AC15 Router,"The Tenda AC15 Router firmware version V15.03.05.18 is susceptible to a buffer overflow vulnerability through the function formSetVirtualSer. An attacker could exploit this vulnerability to execute arbitrary code, potentially compromising the device's integrity and confidentiality. It's crucial for users to patch their devices and stay updated to mitigate the risks associated with this vulnerability.",Tenda,Ac15 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-11-21T00:00:00.000Z,0
CVE-2022-44167,https://securityvulnerability.io/vulnerability/CVE-2022-44167,Buffer Overflow in Tenda AC15 Router,"The Tenda AC15 router is susceptible to a buffer overflow vulnerability through the formSetPPTPServer function. This flaw could be exploited by an attacker to execute arbitrary code or cause a denial of service, compromising the integrity and availability of the device. It is crucial for users to update their firmware to the latest version to mitigate these risks.",Tenda,Ac15 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-11-21T00:00:00.000Z,0
CVE-2022-44168,https://securityvulnerability.io/vulnerability/CVE-2022-44168,Buffer Overflow Vulnerability in Tenda AC15 Router,"The Tenda AC15 router firmware version V15.03.05.18 contains a buffer overflow vulnerability in the fromSetRouteStatic function. This flaw can lead to unauthorized access and remote code execution, potentially compromising the security of connected devices. It is crucial for users to update their firmware and implement network security measures to prevent exploitation.",Tenda,Ac15 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-11-21T00:00:00.000Z,0
CVE-2022-44156,https://securityvulnerability.io/vulnerability/CVE-2022-44156,Buffer Overflow Vulnerability in Tenda AC15 Router,"The Tenda AC15 router, specifically version V15.03.05.19, contains a buffer overflow vulnerability in the formSetIpMacBind function. This flaw may allow an attacker to craft malicious requests that could lead to unexpected behavior, potential data leakage, and other adverse effects on the system's integrity. It's crucial for users to stay informed and implement necessary security measures to protect their devices.",Tenda,Ac15 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-11-21T00:00:00.000Z,0
CVE-2022-43259,https://securityvulnerability.io/vulnerability/CVE-2022-43259,Stack Overflow Vulnerability in Tenda AC15 Router,"The Tenda AC15 router has a stack overflow vulnerability due to improper handling of the timeZone parameter in the form_fast_setting_wifi_set function. This flaw could potentially enable an attacker to exploit the affected firmware version, leading to unauthorized access or a complete system compromise. Users are encouraged to review their device configurations and consider applying any available patches.",Tenda,Ac15 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-10-18T00:00:00.000Z,0
CVE-2022-40851,https://securityvulnerability.io/vulnerability/CVE-2022-40851,Stack Overflow Vulnerability in Tenda AC15 Router,"The Tenda AC15 router version V15.03.05.19 is susceptible to a stack overflow vulnerability within the 'fromAddressNat' function. This flaw could potentially allow attackers to exploit the router, leading to unauthorized access or other malicious activities. Users are advised to monitor their devices and apply available patches to mitigate these risks.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.002219999907538295,false,,false,false,false,,,false,false,,2022-09-23T14:02:51.000Z,0
CVE-2022-40853,https://securityvulnerability.io/vulnerability/CVE-2022-40853,Stack Overflow Vulnerability in Tenda AC15 Router,"The Tenda AC15 router, specifically with firmware version V15.03.05.19, is susceptible to a stack overflow vulnerability. This issue arises in the handling of the 'list' parameter within the '/goform/fast_setting_wifi_set' endpoint. An attacker can exploit this vulnerability to disrupt normal operations or execute arbitrary code, posing a significant risk to network security.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.002219999907538295,false,,false,false,false,,,false,false,,2022-09-23T13:59:58.000Z,0
CVE-2022-40860,https://securityvulnerability.io/vulnerability/CVE-2022-40860,Stack Overflow Vulnerability in Tenda AC15 Router,"The Tenda AC15 router, specifically version V15.03.05.19, has a stack overflow vulnerability that can be exploited through the function formSetQosBand located at FUN_0007dd20. This vulnerability arises when handling the request for /goform/SetNetControlList, potentially allowing unauthorized users to manipulate device functions and undermine network security.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.002219999907538295,false,,false,false,false,,,false,false,,2022-09-23T13:47:20.000Z,0
CVE-2022-40862,https://securityvulnerability.io/vulnerability/CVE-2022-40862,Stack Overflow Vulnerability in Tenda AC15 and AC18 Routers,"The Tenda AC15 and AC18 routers contain a stack overflow vulnerability in the function processing NatStaticSetting. Specifically, the issue arises when processing requests directed at the /goform/NatStaticSetting endpoint. Exploitation of this vulnerability could potentially allow unauthorized access or control over affected devices, posing significant security risks to users. Users of these routers are advised to apply available updates and monitor their network security settings closely.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.00279000005684793,false,,false,false,false,,,false,false,,2022-09-23T13:45:25.000Z,0
CVE-2022-40864,https://securityvulnerability.io/vulnerability/CVE-2022-40864,Stack Overflow Vulnerability in Tenda AC15 and AC18 Routers,"Tenda AC15 and AC18 routers running firmware version V15.03.05.19 are susceptible to stack overflow vulnerabilities within the setSmartPowerManagement function, specifically triggered by the /goform/PowerSaveSet request. Exploiting this vulnerability can potentially allow an attacker to execute arbitrary code or disrupt the normal operation of the router, thus impacting the security and integrity of the network. Users are encouraged to apply necessary updates and monitor their devices for unusual activity.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.00279000005684793,false,,false,false,false,,,false,false,,2022-09-23T13:38:53.000Z,0
CVE-2022-40865,https://securityvulnerability.io/vulnerability/CVE-2022-40865,Heap Overflow Vulnerability in Tenda AC15 and AC18 Routers,"The Tenda AC15 and AC18 routers are susceptible to heap overflow vulnerabilities found within the function setSchedWifi when handling the request /goform/openSchedWifi/. This flaw could potentially allow an attacker to execute arbitrary code or disrupt normal operations, thus compromising the functioning and security of the device. It is crucial for users to apply patches or updates provided by Tenda to mitigate the risks associated with this vulnerability.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.00279000005684793,false,,false,false,false,,,false,false,,2022-09-23T13:35:42.000Z,0
CVE-2022-40869,https://securityvulnerability.io/vulnerability/CVE-2022-40869,Stack Overflow Vulnerability in Tenda AC15 and AC18 Routers,"Tenda AC15 and AC18 routers contain a stack overflow vulnerability in the handling of DHCP client lists, specifically in the fromDhcpListClient function. This flaw occurs due to improper validation of combined parameters, allowing an attacker to potentially execute arbitrary code or cause a denial of service by sending crafted input. Users should urgently review their device configurations and apply necessary updates to mitigate risks associated with this vulnerability.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.00279000005684793,false,,false,false,false,,,false,false,,2022-09-23T13:32:22.000Z,0
CVE-2022-38326,https://securityvulnerability.io/vulnerability/CVE-2022-38326,Buffer Overflow Vulnerability in Tenda AC15 and AC18 WiFi Routers,The Tenda AC15 and AC18 WiFi routers are susceptible to a buffer overflow vulnerability due to improper handling of the 'page' parameter in the NatStaticSetting function. This flaw may allow an attacker to execute arbitrary code or cause the device to become unresponsive by sending a specially crafted request to the vulnerable endpoint. It is crucial for users of these routers to apply the necessary updates to mitigate potential risks.,Tenda,Ac15 Firmware,9.8,CRITICAL,0.0020099999383091927,false,,false,false,false,,,false,false,,2022-09-15T19:01:38.000Z,0
CVE-2022-38325,https://securityvulnerability.io/vulnerability/CVE-2022-38325,Buffer Overflow Vulnerability in Tenda AC15 and AC18 WiFi Routers,"The Tenda AC15 and AC18 WiFi routers suffer from a buffer overflow vulnerability that can be exploited via the filePath parameter in the /goform/expandDlnaFile endpoint. This flaw may allow attackers to manipulate memory, potentially leading to unauthorized access or disruption of the router's functionality. It is crucial for users to apply any available patches and implement security best practices to safeguard their devices from potential exploitation.",Tenda,Ac15 Firmware,9.8,CRITICAL,0.0020099999383091927,false,,false,false,false,,,false,false,,2022-09-15T19:01:37.000Z,0