CVE-2018-14492

Tenda AC7 through V15.03.06.44_CN, AC9 through V15.03.05.19(6318)_CN, and AC10 through V15.03.06.23_CN devices have a Stack-based Buffer Overflow via a long limitSpeed or limitSpeedup parameter to an unspecified /goform URI.
References
Link Resource
https://github.com/ZIllR0/Routers/blob/master/Tendaoob1.md Exploit Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:tendacn:ac7_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:tendacn:ac7:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:tendacn:ac9_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:tendacn:ac9:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:tendacn:ac10_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:tendacn:ac10:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:tendacn:ac15_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:tendacn:ac15:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:tendacn:ac18_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:tendacn:ac18:-:*:*:*:*:*:*:*

Information

Published : 2018-07-21 05:29

Updated : 2020-08-24 10:37


NVD link : CVE-2018-14492

Mitre link : CVE-2018-14492


JSON object : View

CWE
CWE-787

Out-of-bounds Write

Advertisement

dedicated server usa

Products Affected

tendacn

  • ac18_firmware
  • ac7
  • ac9
  • ac7_firmware
  • ac10_firmware
  • ac9_firmware
  • ac18
  • ac10
  • ac15
  • ac15_firmware