Total
31 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-24142 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetFirewallCfg. This vulnerability allows attackers to cause a Denial of Service (DoS) via the firewallEn parameter. | |||||
CVE-2022-24149 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetWirelessRepeat. This vulnerability allows attackers to cause a Denial of Service (DoS) via the wpapsk_crypto parameter. | |||||
CVE-2022-24163 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service (DoS) via the timeZone parameter. | |||||
CVE-2022-24162 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function saveParentControlInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the time parameter. | |||||
CVE-2022-24157 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetMacFilterCfg. This vulnerability allows attackers to cause a Denial of Service (DoS) via the deviceList parameter. | |||||
CVE-2022-24151 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetWifiGusetBasic. This vulnerability allows attackers to cause a Denial of Service (DoS) via the shareSpeed parameter. | |||||
CVE-2022-24155 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
Tenda AX3 v16.03.12.10_CN was discovered to contain a heap overflow in the function setSchedWifi. This vulnerability allows attackers to cause a Denial of Service (DoS) via the schedStartTime and schedEndTime parameters. | |||||
CVE-2022-24145 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formWifiBasicSet. This vulnerability allows attackers to cause a Denial of Service (DoS) via the security and security_5g parameters. | |||||
CVE-2022-24148 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2024-02-04 | 7.5 HIGH | 9.8 CRITICAL |
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg. This vulnerability allows attackers to execute arbitrary commands via the dmzIp parameter. | |||||
CVE-2022-24158 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetIpMacBind. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter. | |||||
CVE-2022-24144 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2024-02-04 | 7.5 HIGH | 9.8 CRITICAL |
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function WanParameterSetting. This vulnerability allows attackers to execute arbitrary commands via the gateway, dns1, and dns2 parameters. |