Tenda Technology AC9 Firmware 15.03.05.19(6318)

CPE Details

Tenda Technology AC9 Firmware 15.03.05.19(6318)
tendacn
ac9_firmware
15.03.05.19\(6318\)
2021-11-01
17h44 +00:00
2021-11-19
12h21 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:tendacn:ac9_firmware:15.03.05.19\(6318\):*:*:*:*:*:*:*

Informations

Vendor

tendacn

Product

ac9_firmware

Version

15.03.05.19\(6318\)

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2025-29032 2025-03-14 00h00 +00:00 Tenda AC9 v15.03.05.19(6318) was discovered to contain a buffer overflow via the formWifiWpsOOB function.
5.9
Medium
CVE-2021-31627 2021-10-29 08h32 +00:00 Buffer Overflow vulnerability in Tenda AC9 V1.0 through V15.03.05.19(6318), and AC9 V3.0 V15.03.06.42_multi, allows attackers to execute arbitrary code via the index parameter.
8.8
High
CVE-2021-31624 2021-10-29 08h25 +00:00 Buffer Overflow vulnerability in Tenda AC9 V1.0 through V15.03.05.19(6318), and AC9 V3.0 V15.03.06.42_multi, allows attackers to execute arbitrary code via the urls parameter.
8.8
High
CVE-2020-22079 2021-10-29 08h19 +00:00 Stack-based buffer overflow in Tenda AC-10U AC1200 Router US_AC10UV1.0RTL_V15.03.06.48_multi_TDE01 allows remote attackers to execute arbitrary code via the timeZone parameter to goform/SetSysTimeCfg.
9.8
Critical
CVE-2018-14492 2018-07-21 12h00 +00:00 Tenda AC7 through V15.03.06.44_CN, AC9 through V15.03.05.19(6318)_CN, and AC10 through V15.03.06.23_CN devices have a Stack-based Buffer Overflow via a long limitSpeed or limitSpeedup parameter to an unspecified /goform URI.
7.5
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.