Ac18 firmware

This hub aggregates every CVE we track for Ac18 firmware, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.

Networking Infrastructure

121

CVEs tracked

Critical

High

In CISA KEV

Severity distribution

CRITICAL60HIGH48MEDIUM13

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 15 most recently published vulnerabilities affecting Ac18 firmware.

CVE-2026-31255A command injection vulnerability exists in Tenda AC18 V15.03.05.05_multi. The vulnerability is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allo...9.8Apr 27, 2026
CVE-2025-14993Tenda AC18 HTTP Request SetDlnaCfg sprintf stack-based overflow8.8Dec 21, 2025
CVE-2025-14992Tenda AC18 HTTP Request GetParentControlInfo strcpy stack-based overflow8.8Dec 21, 2025
CVE-2025-63835A stack-based buffer overflow vulnerability was discovered in Tenda AC18 v15.03.05.05_multi. The vulnerability exists in the guestSsid parameter of the /goform/WifiGuestSet interface. Remote attack...8.8Nov 10, 2025
CVE-2025-63834A stored cross-site scripting (XSS) vulnerability was discovered in Tenda AC18 v15.03.05.05_multi. The vulnerability exists in the ssid parameter of the wireless settings. Remote attackers can inje...5.4Nov 10, 2025
CVE-2025-11328Tenda AC18 SetDDNSCfg stack-based overflow8.8Oct 6, 2025
CVE-2025-11327Tenda AC18 SetUpnpCfg stack-based overflow8.8Oct 6, 2025
CVE-2025-11326Tenda AC18 WifiMacFilterSet stack-based overflow8.8Oct 6, 2025
CVE-2025-11325Tenda AC18 fast_setting_pppoe_set stack-based overflow8.8Oct 6, 2025
CVE-2025-11324Tenda AC18 setNotUpgrade stack-based overflow8.8Oct 6, 2025
CVE-2025-60663Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the wanMTU parameter in the fromAdvSetMacMtuWan function.7.5Oct 2, 2025
CVE-2025-60662Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the wanSpeed parameter in the fromAdvSetMacMtuWan function.7.5Oct 2, 2025
CVE-2025-60661Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the cloneType parameter in the fromAdvSetMacMtuWan function.5.3Oct 2, 2025
CVE-2025-60660Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the mac parameter in the fromAdvSetMacMtuWan function.7.5Oct 2, 2025
CVE-2025-11123Tenda AC18 saveAutoQos stack-based overflow8.8Sep 28, 2025

Product normalization is registry-driven with AI assist and human review. How it works