CVE-2021-31624
HIGHTendacn Ac9 Firmware < 15.03.06.42_multi - Buffer Overflow
Title source: ruleDescription
Buffer Overflow vulnerability in Tenda AC9 V1.0 through V15.03.05.19(6318), and AC9 V3.0 V15.03.06.42_multi, allows attackers to execute arbitrary code via the urls parameter.
References (2)
Core 2
Core References
Not Applicable x_refsource_misc
http://tenda.com
Exploit, Third Party Advisory x_refsource_misc
https://github.com/Lyc-heng/routers/blob/main/routers/stack2.md
Scores
CVSS v3
8.8
EPSS
0.0012
EPSS Percentile
29.9%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-120
Status
published
Products (1)
tendacn/ac9_firmware
< 15.03.06.42_multi
Published
Oct 29, 2021
Tracked Since
Feb 18, 2026