CVE-2020-24987
CRITICALTenda AC18 Firmware < v15.03.05.05_en - Remote Code Execution via Radius Authentication Bypass
Title source: llmDescription
Tenda AC18 Router through V15.03.05.05_EN and through V15.03.05.19(6318) CN devices could cause a remote code execution due to incorrect authentication handling of vulnerable logincheck() function in /usr/lib/lua/ngx_authserver/ngx_wdas.lua file if the administrator UI Interface is set to "radius".
References (3)
Core 3
Core References
Product, Vendor Advisory x_refsource_misc
https://www.tendacn.com/en/product/AC18.html
Broken Link x_refsource_misc
https://drive.google.com/file/d/1iqpr0EofOBC6kCq2USTOBPRlJu_naFjQ/view?usp=sharing
Third Party Advisory x_refsource_misc
https://cwe.mitre.org/data/definitions/287.html
Scores
CVSS v3
9.8
EPSS
0.0310
EPSS Percentile
86.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-287
Status
published
Products (1)
tendacn/ac18_firmware
< v15.03.05.05_en
Published
Sep 04, 2020
Tracked Since
Feb 18, 2026