Vulnerabilities (CVE)

Filtered by vendor Tenda Subscribe
Filtered by product Ax3 Firmware
Total 32 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-49409 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 N/A 9.8 CRITICAL
Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution vulnerability via the function /goform/telnet.
CVE-2023-49408 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 N/A 9.8 CRITICAL
Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the function set_device_name.
CVE-2023-40915 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 N/A 7.5 HIGH
Tenda AX3 v16.03.12.11 has a stack buffer overflow vulnerability detected at function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS) via the ssid parameter.
CVE-2023-27240 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 N/A 9.8 CRITICAL
Tenda AX3 V16.03.12.11 was discovered to contain a command injection vulnerability via the lanip parameter at /goform/AdvSetLanip.
CVE-2023-27239 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 N/A 9.8 CRITICAL
Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the shareSpeed parameter at /goform/WifiGuestSet.
CVE-2023-27042 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 N/A 8.8 HIGH
Tenda AX3 V16.03.12.11 is vulnerable to Buffer Overflow via /goform/SetFirewallCfg.
CVE-2023-24212 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 N/A 9.8 CRITICAL
Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the timeType function at /goform/SetSysTimeCfg.
CVE-2022-24995 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.5 HIGH 9.8 CRITICAL
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service (DoS) via the time parameter.
CVE-2022-24163 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service (DoS) via the timeZone parameter.
CVE-2022-24162 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function saveParentControlInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the time parameter.
CVE-2022-24161 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
Tenda AX3 v16.03.12.10_CN was discovered to contain a heap overflow in the function GetParentControlInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the mac parameter.
CVE-2022-24160 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetDeviceName. This vulnerability allows attackers to cause a Denial of Service (DoS) via the devName parameter.
CVE-2022-24159 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetPPTPServer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the startIp and endIp parameters.
CVE-2022-24158 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetIpMacBind. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter.
CVE-2022-24157 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetMacFilterCfg. This vulnerability allows attackers to cause a Denial of Service (DoS) via the deviceList parameter.
CVE-2022-24156 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetVirtualSer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter.
CVE-2022-24155 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
Tenda AX3 v16.03.12.10_CN was discovered to contain a heap overflow in the function setSchedWifi. This vulnerability allows attackers to cause a Denial of Service (DoS) via the schedStartTime and schedEndTime parameters.
CVE-2022-24154 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetRebootTimer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the rebootTime parameter.
CVE-2022-24153 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formAddMacfilterRule. This vulnerability allows attackers to cause a Denial of Service (DoS) via the devName parameter.
CVE-2022-24152 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 7.8 HIGH 7.5 HIGH
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetRouteStatic. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter.