Tenda Ac18 Firmware vulnerabilities

CVE-2024-2854 [CRITICAL] CWE-78 CVE-2024-2854: A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the fun A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-257778 is th

CVE-2024-28537 [CRITICAL] CWE-125 CVE-2024-28537: Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the page parameter of fromNatStaticSet Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the page parameter of fromNatStaticSetting function.

CVE-2024-28547 [MEDIUM] CWE-121 CVE-2024-28547: Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the firewallEn parameter of formSetFir Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the firewallEn parameter of formSetFirewallCfg function.

CVE-2024-28550 [MEDIUM] CWE-121 CVE-2024-28550: Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the filePath parameter of formExpandDl Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the filePath parameter of formExpandDlnaFile function.

CVE-2024-2558 [HIGH] CWE-121 CVE-2024-2558: A vulnerability was found in Tenda AC18 15.03.05.05. It has been rated as critical. This issue affec A vulnerability was found in Tenda AC18 15.03.05.05. It has been rated as critical. This issue affects the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identif

CVE-2024-2547 [HIGH] CWE-121 CVE-2024-2547: A vulnerability was found in Tenda AC18 15.03.05.05 and classified as critical. Affected by this iss A vulnerability was found in Tenda AC18 15.03.05.05 and classified as critical. Affected by this issue is the function R7WebsSecurityHandler. The manipulation of the argument password leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerabili

CVE-2024-2546 [HIGH] CWE-121 CVE-2024-2546: A vulnerability has been found in Tenda AC18 15.13.07.09 and classified as critical. Affected by thi A vulnerability has been found in Tenda AC18 15.13.07.09 and classified as critical. Affected by this vulnerability is the function fromSetWirelessRepeat. The manipulation of the argument wpapsk_crypto5g leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated

CVE-2024-2560 [MEDIUM] CWE-352 CVE-2024-2560: A vulnerability classified as problematic was found in Tenda AC18 15.03.05.05. Affected by this vuln A vulnerability classified as problematic was found in Tenda AC18 15.03.05.05. Affected by this vulnerability is the function fromSysToolRestoreSet of the file /goform/SysToolRestoreSet. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associate

CVE-2024-2559 [MEDIUM] CWE-352 CVE-2024-2559: A vulnerability classified as problematic has been found in Tenda AC18 15.03.05.05. Affected is the A vulnerability classified as problematic has been found in Tenda AC18 15.03.05.05. Affected is the function fromSysToolReboot of the file /goform/SysToolReboot. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-257058 is the identifier a

CVE-2024-2486 [HIGH] CWE-121 CVE-2024-2486: A vulnerability was found in Tenda AC18 15.03.05.05. It has been classified as critical. This affect A vulnerability was found in Tenda AC18 15.03.05.05. It has been classified as critical. This affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used

CVE-2024-2489 [HIGH] CWE-121 CVE-2024-2489: A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the fun A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the function formSetQosBand of the file /goform/SetNetControlList. The manipulation of the argument list leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identif

CVE-2024-2490 [HIGH] CWE-121 CVE-2024-2490: A vulnerability classified as critical was found in Tenda AC18 15.03.05.05. Affected by this vulnera A vulnerability classified as critical was found in Tenda AC18 15.03.05.05. Affected by this vulnerability is the function setSchedWifi of the file /goform/openSchedWifi. The manipulation of the argument schedStartTime/schedEndTime leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and

CVE-2024-2485 [HIGH] CWE-121 CVE-2024-2485: A vulnerability was found in Tenda AC18 15.03.05.05 and classified as critical. Affected by this iss A vulnerability was found in Tenda AC18 15.03.05.05 and classified as critical. Affected by this issue is the function formSetSpeedWan of the file /goform/SetSpeedWan. The manipulation of the argument speed_dir leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The ide

CVE-2024-2488 [HIGH] CWE-121 CVE-2024-2488: A vulnerability was found in Tenda AC18 15.03.05.05. It has been rated as critical. This issue affec A vulnerability was found in Tenda AC18 15.03.05.05. It has been rated as critical. This issue affects the function formSetPPTPServer of the file /goform/SetPptpServerCfg. The manipulation of the argument startIP leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The

CVE-2024-2487 [HIGH] CWE-121 CVE-2024-2487: A vulnerability was found in Tenda AC18 15.03.05.05. It has been declared as critical. This vulnerab A vulnerability was found in Tenda AC18 15.03.05.05. It has been declared as critical. This vulnerability affects the function formSetDeviceName of the file /goform/SetOnlineDevName. The manipulation of the argument devName/mac leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and ma

CVE-2024-28535 [CRITICAL] CWE-787 CVE-2024-28535: Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the mitInterface parameter of fromAddr Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the mitInterface parameter of fromAddressNat function.

CVE-2024-28553 [CRITICAL] CWE-787 CVE-2024-28553: Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the entrys parameter fromAddressNat fu Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the entrys parameter fromAddressNat function.

CVE-2023-38823 [CRITICAL] CWE-120 CVE-2023-38823: Buffer Overflow vulnerability in Tenda Ac19 v.1.0, AC18, AC9 v.1.0, AC6 v.2.0 and v.1.0 allows a rem Buffer Overflow vulnerability in Tenda Ac19 v.1.0, AC18, AC9 v.1.0, AC6 v.2.0 and v.1.0 allows a remote attacker to execute arbitrary code via the formSetCfm function in bin/httpd.

CVE-2023-30135 [CRITICAL] CWE-77 CVE-2023-30135: Tenda AC18 v15.03.05.19(6318_)_cn was discovered to contain a command injection vulnerability via th Tenda AC18 v15.03.05.19(6318_)_cn was discovered to contain a command injection vulnerability via the deviceName parameter in the setUsbUnload function.

CVE-2023-24166 [CRITICAL] CWE-787 CVE-2023-24166: Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/formWifiBasicSet. Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/formWifiBasicSet.