Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin is vulnerable to Buffer Overflow. The stack overflow vulnerability lies in the /goform/setpptpservercfg interface of the web. The sent post data startip and endip are copied to the stack using the sanf function, resulting in stack overflow. Similarly, this vulnerability can be used together with CVE-2021-44971
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tenda AC15 缓冲区错误漏洞
Vulnerability Description
Tenda AC15是中国腾达(Tenda)公司的一款无线路由器。 Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin版本存在安全漏洞,该漏洞源于易受缓冲区溢出的影响。堆栈溢出漏洞存在于web的/goform/setpptpservercfg接口中,使用sanf函数将发送的post数据startip和endip复制到堆栈中,导致堆栈溢出。
CVSS Information
N/A
Vulnerability Type
N/A