Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Tenda Subscribe
Filtered by product Ac18
Total 81 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-30891 1 Tenda 2 Ac18, Ac18 Firmware 2025-04-10 N/A 8.8 HIGH
A command injection vulnerability exists in /goform/exeCommand in Tenda AC18 v15.03.05.05, which allows attackers to construct cmdinput parameters for arbitrary command execution.
CVE-2024-33835 1 Tenda 2 Ac18, Ac18 Firmware 2025-04-10 N/A 9.8 CRITICAL
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the remoteIp parameter from formSetSafeWanWebMan function.
CVE-2024-33181 1 Tenda 2 Ac18, Ac18 Firmware 2025-04-07 N/A 8.8 HIGH
Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnerability via the deviceMac parameter at ip/goform/addWifiMacFilter.
CVE-2024-41630 1 Tenda 2 Ac18, Ac18 Firmware 2025-04-07 N/A 7.6 HIGH
Stack-based buffer overflow vulnerability in Tenda AC18 V15.03.3.10_EN allows a remote attacker to execute arbitrary code via the ssid parameter at ip/goform/fast_setting_wifi_set.
CVE-2023-24170 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-28 N/A 9.8 CRITICAL
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/fromSetWirelessRepeat.
CVE-2023-24169 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-28 N/A 9.8 CRITICAL
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/FUN_0007343c.
CVE-2023-24167 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-28 N/A 9.8 CRITICAL
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/add_white_node.
CVE-2023-24166 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-28 N/A 9.8 CRITICAL
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/formWifiBasicSet.
CVE-2023-24165 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-28 N/A 9.8 CRITICAL
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/initIpAddrInfo.
CVE-2023-24164 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-28 N/A 9.8 CRITICAL
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/FUN_000c2318.
CVE-2024-57582 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-22 N/A 9.8 CRITICAL
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the startIP parameter in the formSetPPTPServer function.
CVE-2024-57579 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-19 N/A 9.8 CRITICAL
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the limitSpeedUp parameter in the formSetClientState function.
CVE-2024-57581 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-18 N/A 9.8 CRITICAL
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the firewallEn parameter in the formSetFirewallCfg function.
CVE-2024-57580 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-18 N/A 9.8 CRITICAL
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the devName parameter in the formSetDeviceName function.
CVE-2024-57578 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-17 N/A 8.8 HIGH
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the funcpara1 parameter in the formSetCfm function.
CVE-2024-57577 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-17 N/A 5.7 MEDIUM
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the speed_dir parameter in the formSetSpeedWan function.
CVE-2024-34974 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-17 N/A 8.2 HIGH
Tenda AC18 v15.03.05.19 is vulnerable to Buffer Overflow in the formSetPPTPServer function via the endIp parameter.
CVE-2024-28545 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-13 N/A 9.8 CRITICAL
Tenda AC18 V15.03.05.05 contains a command injection vulnerablility in the deviceName parameter of formsetUsbUnload function.
CVE-2024-28551 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-13 N/A 7.5 HIGH
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the ssid parameter of form_fast_setting_wifi_set function.
CVE-2024-28547 1 Tenda 2 Ac18, Ac18 Firmware 2025-03-13 N/A 6.5 MEDIUM
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the firewallEn parameter of formSetFirewallCfg function.