Ac10U Firmware CVE Vulnerabilities

Name: Ac10U Firmware
Author: Tenda

By Tenda — 3 known vulnerabilities

Critical

High

Medium

Low

None

All Ac10U Firmware CVEs

Recent Highest Score Oldest

CVE-2026-8263

4.7 medium

A security flaw has been discovered in Tenda AC6 15.03.06.49_multi_TDE01. Affected is the function fromSetWirelessRepeat of the file /goform/WifiExtraSet of the component httpd. Performing a manipulation of the argument mac/ssid results in os command injection. It is possible to initiate the attack

May 11, 2026

CVE-2025-15218

8.8 high

A weakness has been identified in Tenda AC10U 15.03.06.48/15.03.06.49. Affected by this vulnerability is the function fromadvsetlanip of the file /goform/AdvSetLanip of the component POST Request Parameter Handler. Executing a manipulation of the argument lanMask can lead to buffer overflow. The att

Dec 30, 2025

CVE-2025-15215

8.8 high

A vulnerability was determined in Tenda AC10U 15.03.06.48/15.03.06.49. This affects the function formSetPPTPUserList of the file /goform/setPptpUserList of the component HTTP POST Request Handler. This manipulation of the argument list causes buffer overflow. It is possible to initiate the attack re

Dec 30, 2025