Tenda ac7
This hub aggregates every CVE we track for Tenda ac7, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
36
CVEs tracked
6
Critical
23
High
0
In CISA KEV
Severity distribution
HIGH23MEDIUM7CRITICAL6
Monthly trend
0
0
0
3
0
0
0
0
2
1
2
2
1
1
0
1
0
0
0
4
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Tenda ac7.
- CVE-2026-24441Tenda AC7 Transmits Admin Credentials Without HTTPS Protection5.9
- CVE-2026-24434Tenda AC7 Web Interface Lacks CSRF Protections for Admin Actions6.5
- CVE-2026-24427Tenda AC7 Exposes Admin Credentials in Configuration Responses5.5
- CVE-2026-24426Tenda AC7 Reflected XSS via Web Interface Output Encoding6.1
- CVE-2025-11586Tenda AC7 setNotUpgrade stack-based overflow8.8
- CVE-2025-9023Tenda AC7/AC18 SetLEDCfg formSetSchedLed buffer overflow8.8
- CVE-2025-8017Tenda AC7 httpd setMacFilterCfg formSetMacFilterCfg stack-based overflow8.8
- CVE-2025-5862Tenda AC7 setPptpUserList formSetPPTPUserList buffer overflow8.8
- CVE-2025-5861Tenda AC7 AdvSetLanip fromadvsetlanip buffer overflow8.8
- CVE-2025-4810Tenda AC7 SetRebootTimer formSetRebootTimer stack-based overflow8.8
- CVE-2025-4809Tenda AC7 setMacFilterCfg fromSafeSetMacFilter stack-based overflow8.8
- CVE-2025-3346Tenda AC7 SetPptpServerCfg formSetPPTPServer buffer overflow8.8
- CVE-2025-1851Tenda AC7 SetFirewallCfg formSetFirewallCfg stack-based overflow8.8
- CVE-2025-1819Tenda AC7 1200M telnet TendaTelnet os command injection6.3
- CVE-2024-48826Tenda AC7 v.15.03.06.44 ate_iwpriv_set has pre-authentication command injection allowing remote attackers to execute arbitrary code.8.8
Product normalization is registry-driven with AI assist and human review. How it works