Tendacn: >> Ac15 Firmware >> 15.03.1.16 Security Vulnerabilities
Tenda AC7 through V15.03.06.44_CN, AC9 through V15.03.05.19(6318)_CN, and AC10 through V15.03.06.23_CN devices have a Stack-based Buffer Overflow via a long limitSpeed or limitSpeedup parameter to an unspecified /goform URI.
CVSS Score
7.5
EPSS Score
0.004
Published
2018-07-21
An issue was discovered on Tenda AC15 V15.03.1.16_multi devices. A remote, unauthenticated attacker can gain remote code execution on the device with a crafted password parameter for the COOKIE header.
CVSS Score
9.8
EPSS Score
0.675
Published
2018-02-15