Vulnerability Database

314,496

Total vulnerabilities in the database

CVE-2024-32317

Tenda AC10 v4.0 V16.03.10.13 and V16.03.10.20 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.

Published: Apr 17, 2024
Updated: Nov 16, 2025
CVE: CVE-2024-32317
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:N

CWEs:

CWE-121

Affected Software
References

Software	From	Fixed in
tenda / ac10_firmware	16.03.10.13	16.03.10.13.x
tenda / ac10_firmware	16.03.10.20	16.03.10.20.x

https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC10/V16.03.10.13/formWanParameterSetting.md

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo