Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ac15_firmware vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2020-15916
goform/AdvSetLanip endpoint on Tenda AC15 AC1900 15.03.05.19 devices allows remote malicious users to execute arbitrary system commands via shell metacharacters in the lanIp POST parameter.
Tenda Ac15 Firmware 15.03.05.19
7.1
CVSSv2
CVE-2020-10986
A CSRF issue in the /goform/SysToolReboot endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote malicious users to reboot the device and cause denial of service via a payload hosted by an attacker-controlled web page.
Tenda Ac15 Firmware 15.03.05.19
10
CVSSv2
CVE-2020-10987
The goform/setUsbUnload endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote malicious users to execute arbitrary system commands via the deviceName POST parameter.
Tenda Ac15 Firmware 15.03.05.19
10
CVSSv2
CVE-2020-10988
A hard-coded telnet credential in the tenda_login binary of Tenda AC15 AC1900 version 15.03.05.19 allows unauthenticated remote malicious users to start a telnetd service on the device.
Tenda Ac15 Firmware 15.03.05.19
2 Github repositories
4.3
CVSSv2
CVE-2020-10989
An XSS issue in the /goform/WifiBasicSet endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote malicious users to execute malicious payloads via the WifiName POST parameter.
Tenda Ac15 Firmware 15.03.05.19
NA
CVE-2022-40865
Tenda AC15 and AC18 routers V15.03.05.19 contain heap overflow vulnerabilities in the function setSchedWifi with the request /goform/openSchedWifi/
Tendacn Ac15 Firmware 15.03.05.19
Tendacn Ac18 Firmware 15.03.05.19
NA
CVE-2022-40862
Tenda AC15 and AC18 router V15.03.05.19 contains stack overflow vulnerability in the function fromNatStaticSetting with the request /goform/NatStaticSetting
Tendacn Ac15 Firmware 15.03.05.19
Tendacn Ac18 Firmware 15.03.05.19
NA
CVE-2022-40864
Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function setSmartPowerManagement with the request /goform/PowerSaveSet
Tendacn Ac15 Firmware 15.03.05.19
Tendacn Ac18 Firmware 15.03.05.19
NA
CVE-2022-40869
Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function fromDhcpListClient with a combined parameter "list*" ("%s%d","list").
Tendacn Ac15 Firmware 15.03.05.19
Tendacn Ac18 Firmware 15.03.05.19
NA
CVE-2022-38325
Tenda AC15 WiFi Router V15.03.05.19_multi and AC18 WiFi Router V15.03.05.19_multi were discovered to contain a buffer overflow via the filePath parameter at /goform/expandDlnaFile.
Tendacn Ac15 Firmware 15.03.05.19 Multi
Tendacn Ac18 Firmware 15.03.05.19 Multi
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »