Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ac9_firmware vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2021-42659
There is a buffer overflow vulnerability in the Web server httpd of the router in Tenda router devices such as Tenda AC9 V1.0 V15.03.02.19(6318) and Tenda AC9 V3.0 V15.03.06.42_multi. When setting the virtual service, the httpd program will crash and exit when the super-long list...
Tenda Ac9 Firmware 15.03.05.19\\(6318\\)
Tenda Ac9 Firmware 15.03.06.42 Multi
9.8
CVSSv3
CVE-2020-26728
A vulnerability exists in Tenda AC9 v3.0 V15.03.06.42_multi and Tenda AC9 V1.0 V15.03.05.19(6318)_CN which allows for remote code execution via shell metacharacters in the guestuser field to the __fastcall function with a POST request.
Tenda Ac9 Firmware 15.03.06.42 Multi
Tenda Ac9 Firmware 15.03.05.19\\(6318\\) Cn
9.8
CVSSv3
CVE-2020-22079
Stack-based buffer overflow in Tenda AC-10U AC1200 Router US_AC10UV1.0RTL_V15.03.06.48_multi_TDE01 allows remote malicious users to execute arbitrary code via the timeZone parameter to goform/SetSysTimeCfg.
Tendacn Ac10u Firmware 15.03.06.48 Multi Tde01
Tendacn Ac9 Firmware 15.03.05.19\\(6318\\)
Tendacn Ac9 Firmware 15.03.06.42 Multi
8.8
CVSSv3
CVE-2021-31624
Buffer Overflow vulnerability in Tenda AC9 V1.0 through V15.03.05.19(6318), and AC9 V3.0 V15.03.06.42_multi, allows malicious users to execute arbitrary code via the urls parameter.
Tendacn Ac9 Firmware
8.8
CVSSv3
CVE-2021-31627
Buffer Overflow vulnerability in Tenda AC9 V1.0 through V15.03.05.19(6318), and AC9 V3.0 V15.03.06.42_multi, allows malicious users to execute arbitrary code via the index parameter.
Tendacn Ac9 Firmware
9.8
CVSSv3
CVE-2023-40942
Tenda AC9 V3.0BR_V15.03.06.42_multi_TD01 exists stack overflow via parameter 'firewall_value' at url /goform/SetFirewallCfg.
Tendacn Ac9 Firmware 15.03.06.42 Multi Td0
5.5
CVSSv3
CVE-2022-36233
Tenda AC9 V15.03.2.13 is vulnerable to Buffer Overflow via httpd, form_fast_setting_wifi_set. httpd.
Tendacn Ac9 Firmware 15.03.2.13
9.8
CVSSv3
CVE-2022-36273
Tenda AC9 V15.03.2.21_cn is vulnerable to command injection via goform/SetSysTimeCfg.
Tenda Ac9 Firmware 15.03.2.21 Cn
9.8
CVSSv3
CVE-2022-27016
There is a stack overflow vulnerability in the SetStaticRouteCfg() function in the httpd service of Tenda AC9 15.03.2.21_cn.
Tenda Ac9 Firmware 15.03.2.21 Cn
1 Github repository
9.8
CVSSv3
CVE-2022-27022
There is a stack overflow vulnerability in the SetSysTimeCfg() function in the httpd service of Tenda AC9 V15.03.2.21_cn. The attacker can obtain a stable root shell through a constructed payload.
Tenda Ac9 Firmware 15.03.2.21 Cn
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »