Filtered by vendor Tenda
Subscribe
Total
609 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-36586 | 1 Tenda | 2 G3, G3 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, there is a buffer overflow vulnerability caused by strcpy in function 0x869f4 in the httpd binary. | |||||
CVE-2022-37799 | 1 Tenda | 2 Ac1206, Ac1206 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter at the function setSmartPowerManagement. | |||||
CVE-2022-38571 | 1 Tenda | 2 M3, M3 Firmware | 2024-02-04 | N/A | 7.5 HIGH |
Tenda M3 V1.0.0.12(4856) was discovered to contain a buffer overflow in the function formSetGuideListItem. | |||||
CVE-2022-37808 | 1 Tenda | 2 Ac1206, Ac1206 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the index parameter in the function formWifiWpsOOB. | |||||
CVE-2022-40847 | 1 Tenda | 2 Ac1200 V-w15ev2, Ac1200 V-w15ev2 Firmware | 2024-02-04 | N/A | 7.8 HIGH |
In Tenda AC1200 Router model W15Ev2 V15.11.0.10(1576), there exists a command injection vulnerability in the function formSetFixTools. This vulnerability allows attackers to run arbitrary commands on the server via the hostname parameter. | |||||
CVE-2022-40844 | 1 Tenda | 2 Ac1200 V-w15ev2, Ac1200 V-w15ev2 Firmware | 2024-02-04 | N/A | 5.4 MEDIUM |
In Tenda (Shenzhen Tenda Technology Co., Ltd) AC1200 Router model W15Ev2 V15.11.0.10(1576), a Stored Cross Site Scripting (XSS) issue exists allowing an attacker to execute JavaScript code via the applications website filtering tab, specifically the URL body. | |||||
CVE-2022-43259 | 1 Tenda | 2 Ac15, Ac15 Firmware | 2024-02-04 | N/A | 7.5 HIGH |
Tenda AC15 V15.03.05.18 was discovered to contain a stack overflow via the timeZone parameter in the form_fast_setting_wifi_set function. | |||||
CVE-2022-42168 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/fromSetIpMacBind. | |||||
CVE-2022-38510 | 1 Tenda | 2 Tx9 Pro, Tx9 Pro Firmware | 2024-02-04 | N/A | 7.8 HIGH |
Tenda_TX9pro V22.03.02.10 was discovered to contain a buffer overflow via the component httpd/SetNetControlList. | |||||
CVE-2022-32030 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function formSetQosBand. | |||||
CVE-2022-41396 | 1 Tenda | 2 Ac1200 V-w15ev2, Ac1200 V-w15ev2 Firmware | 2024-02-04 | N/A | 7.8 HIGH |
Tenda AC1200 Router Model W15Ev2 V15.11.0.10(1576) was discovered to contain multiple command injection vulnerabilities in the function setIPsecTunnelList via the IPsecLocalNet and IPsecRemoteNet parameters. | |||||
CVE-2022-42060 | 1 Tenda | 2 Ac1200 V-w15ev2, Ac1200 V-w15ev2 Firmware | 2024-02-04 | N/A | 7.5 HIGH |
Tenda AC1200 Router Model W15Ev2 V15.11.0.10(1576) was discovered to contain a stack overflow via the setWanPpoe function. This vulnerability allows attackers to cause a Denial of Service (DoS) via crafted overflow data. | |||||
CVE-2022-38569 | 1 Tenda | 2 M3, M3 Firmware | 2024-02-04 | N/A | 7.5 HIGH |
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow in the function formDelAd. | |||||
CVE-2022-32043 | 1 Tenda | 2 M3, M3 Firmware | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAccessCodeInfo. | |||||
CVE-2022-43260 | 1 Tenda | 2 Ac18, Ac18 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
Tenda AC18 V15.03.05.19(6318) was discovered to contain a stack overflow via the time parameter in the fromSetSysTime function. | |||||
CVE-2022-43101 | 1 Tenda | 2 Ac23, Ac23 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the devName parameter in the formSetDeviceName function. | |||||
CVE-2022-35560 | 1 Tenda | 2 W6, W6 Firmware | 2024-02-04 | N/A | 7.5 HIGH |
A stack overflow vulnerability exists in /goform/wifiSSIDset in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter. | |||||
CVE-2022-36273 | 1 Tenda | 2 Ac9, Ac9 Firmware | 2024-02-04 | N/A | 9.8 CRITICAL |
Tenda AC9 V15.03.2.21_cn is vulnerable to command injection via goform/SetSysTimeCfg. | |||||
CVE-2022-38566 | 1 Tenda | 2 M3, M3 Firmware | 2024-02-04 | N/A | 7.5 HIGH |
Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formEmailTest. This vulnerability allows attackers to cause a Denial of Service (DoS) via the mailname parameter. | |||||
CVE-2022-36569 | 1 Tenda | 2 Ac9, Ac9 Firmware | 2024-02-04 | N/A | 8.8 HIGH |
Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the deviceList parameter at /goform/setMacFilterCfg. |