{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-17T02:29:47.838","vulnerabilities":[{"cve":{"id":"CVE-2018-14492","sourceIdentifier":"cve@mitre.org","published":"2018-07-21T12:29:00.333","lastModified":"2024-11-21T03:49:10.740","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Tenda AC7 through V15.03.06.44_CN, AC9 through V15.03.05.19(6318)_CN, and AC10 through V15.03.06.23_CN devices have a Stack-based Buffer Overflow via a long limitSpeed or limitSpeedup parameter to an unspecified /goform URI."},{"lang":"es","value":"Los dispositivos Tenda AC7 hasta la versión V15.03.06.44_CN, AC9 hasta la versión V15.03.05.19(6318)_CN y AC10 hasta la versión V15.03.06.23_CN tienen un desbordamiento de búfer basado en pila mediante unos parámetros limitSpeed o limitSpeedup largos en un URI /goform sin especificar."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:tendacn:ac7_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"15.03.06.44_cn","matchCriteriaId":"7FD0F68A-7B1F-47EA-87A4-534F3076EEB6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:tendacn:ac7:-:*:*:*:*:*:*:*","matchCriteriaId":"1D8C8522-F517-4702-828F-D79C803574FF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:tendacn:ac9_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"v15.03.05.19\\(6318\\)_cn","matchCriteriaId":"F518F97C-6E41-4488-BC74-A55D00342473"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:tendacn:ac9:-:*:*:*:*:*:*:*","matchCriteriaId":"E7871810-DC61-4B96-8C3D-2DA1FE202C91"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:tendacn:ac10_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"15.03.06.23_cn","matchCriteriaId":"5C539B44-DC11-406C-8AEB-30570A1263B1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:tendacn:ac10:-:*:*:*:*:*:*:*","matchCriteriaId":"0FE0DA72-D225-4BAE-8813-816AB8F0B3FB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:tendacn:ac15_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"15.03.05.19_cn","matchCriteriaId":"85FC79AC-BE8A-481E-9782-C000CB45FAC0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:tendacn:ac15:-:*:*:*:*:*:*:*","matchCriteriaId":"4EEDF33B-0D03-492A-BCD1-0E6B79F783EF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:tendacn:ac18_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"15.03.05.19\\(6318\\)_cn","matchCriteriaId":"B058E65F-5459-42B1-A5EC-A62635C3751A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:tendacn:ac18:-:*:*:*:*:*:*:*","matchCriteriaId":"FCF0F551-6E6C-48D6-9C2A-740B84AF0349"}]}]}],"references":[{"url":"https://github.com/ZIllR0/Routers/blob/master/Tendaoob1.md","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://github.com/ZIllR0/Routers/blob/master/Tendaoob1.md","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}}]}