Filtered by vendor Tenda
Subscribe
Total
609 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-38570 | 1 Tenda | 2 M3, M3 Firmware | 2024-02-04 | N/A | 7.5 HIGH |
| Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow in the function formDelPushedAd. This vulnerability allows attackers to cause a Denial of Service (DoS) via the adPushUID parameter. | |||||
| CVE-2022-32041 | 1 Tenda | 2 M3, M3 Firmware | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
| Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formGetPassengerAnalyseData. | |||||
| CVE-2022-41395 | 1 Tenda | 2 Ac1200 V-w15ev2, Ac1200 V-w15ev2 Firmware | 2024-02-04 | N/A | 7.8 HIGH |
| Tenda AC1200 Router Model W15Ev2 V15.11.0.10(1576) was discovered to contain a command injection vulnerability via the dmzHost parameter in the setDMZ function. | |||||
| CVE-2022-43103 | 1 Tenda | 2 Ac23, Ac23 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
| Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the list parameter in the formSetQosBand function. | |||||
| CVE-2022-42164 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
| Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formSetClientState. | |||||
| CVE-2022-43105 | 1 Tenda | 2 Ac23, Ac23 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
| Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function. | |||||
| CVE-2022-38565 | 1 Tenda | 2 M3, M3 Firmware | 2024-02-04 | N/A | 7.5 HIGH |
| Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formEmailTest. This vulnerability allows attackers to cause a Denial of Service (DoS) via the mailpwd parameter. | |||||
| CVE-2022-42233 | 1 Tenda | 2 11n, 11n Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
| Tenda 11N with firmware version V5.07.33_cn suffers from an Authentication Bypass vulnerability. | |||||
| CVE-2022-41485 | 1 Tenda | 3 Ac6, Ac6 Firmware, Ac6v2.0 Firmware | 2024-02-04 | N/A | 7.5 HIGH |
| Tenda AC1200 US_AC6V2.0RTL_V15.03.06.51_multi_TDE01 was discovered to contain a buffer overflow in the 0x47ce00 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request. | |||||
| CVE-2022-35559 | 1 Tenda | 2 W6, W6 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
| A stack overflow vulnerability exists in /goform/setAutoPing in Tenda W6 V1.0.0.9(4122), which allows an attacker to construct ping1 parameters and ping2 parameters for a stack overflow attack. An attacker can use this vulnerability to execute arbitrary code execution. | |||||
| CVE-2022-40845 | 1 Tenda | 2 Ac1200 V-w15ev2, W15e Firmware | 2024-02-04 | N/A | 6.5 MEDIUM |
| The Tenda AC1200 Router model W15Ev2 V15.11.0.10(1576) is affected by a password exposure vulnerability. When combined with the improper authorization/improper session management vulnerability, an attacker with access to the router may be able to expose sensitive information which they're not explicitly authorized to have. | |||||
| CVE-2022-38310 | 1 Tenda | 2 Ac18, Ac18 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
| Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain a stack overflow via the list parameter at /goform/SetStaticRouteCfg. | |||||
| CVE-2022-36570 | 1 Tenda | 2 Ac9, Ac9 Firmware | 2024-02-04 | N/A | 7.2 HIGH |
| Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the time parameter at /goform/SetLEDCfg. | |||||
| CVE-2022-42053 | 1 Tenda | 2 Ac1200 V-w15ev2, Ac1200 V-w15ev2 Firmware | 2024-02-04 | N/A | 7.8 HIGH |
| Tenda AC1200 Router Model W15Ev2 V15.11.0.10(1576) was discovered to contain a command injection vulnerability via the PortMappingServer parameter in the setPortMapping function. | |||||
| CVE-2022-42086 | 1 Tenda | 2 Ax1803, Ax1803 Firmware | 2024-02-04 | N/A | 6.5 MEDIUM |
| Tenda AX1803 US_AX1803v2.0br_v1.0.0.1_2994_CN_ZGYD01_4 is vulnerable to Cross Site Request Forgery (CSRF) via function TendaAteMode. | |||||
| CVE-2022-37817 | 1 Tenda | 2 Ax1803, Ax1803 Firmware | 2024-02-04 | N/A | 7.8 HIGH |
| Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the function fromSetIpMacBind. | |||||
| CVE-2022-37801 | 1 Tenda | 2 Ac1206, Ac1206 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
| Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function formSetQosBand. | |||||
| CVE-2022-38564 | 1 Tenda | 2 M3, M3 Firmware | 2024-02-04 | N/A | 7.5 HIGH |
| Tenda M3 V1.0.0.12(4856) was discovered to contain a buffer overflow vulnerability in the function formSetPicListItem. This vulnerability allows attackers to cause a Denial of Service (DoS) via the adItemUID parameter. | |||||
| CVE-2022-37818 | 1 Tenda | 2 Ax1803, Ax1803 Firmware | 2024-02-04 | N/A | 7.8 HIGH |
| Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the list parameter at the function formSetQosBand. | |||||
| CVE-2022-42167 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
| Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formSetFirewallCfg. | |||||