Filtered by vendor Tenda
Subscribe
Total
741 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-42170 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formWifiWpsStart. | |||||
CVE-2022-43107 | 1 Tenda | 2 Ac23, Ac23 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the time parameter in the setSmartPowerManagement function. | |||||
CVE-2022-32043 | 1 Tenda | 2 M3, M3 Firmware | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAccessCodeInfo. | |||||
CVE-2022-32032 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the deviceList parameter in the function formAddMacfilterRule. | |||||
CVE-2022-40942 | 1 Tenda | 2 Tx3, Tx3 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda TX3 US_TX3V1.0br_V16.03.13.11 is vulnerable to stack overflow via compare_parentcontrol_time. | |||||
CVE-2022-41396 | 1 Tenda | 2 W15e, W15e Firmware | 2023-12-10 | N/A | 7.8 HIGH |
Tenda AC1200 Router Model W15Ev2 V15.11.0.10(1576) was discovered to contain multiple command injection vulnerabilities in the function setIPsecTunnelList via the IPsecLocalNet and IPsecRemoteNet parameters. | |||||
CVE-2022-38829 | 1 Tenda | 2 Rx9 Pro, Rx9 Pro Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/setMacFilterCfg. | |||||
CVE-2022-43105 | 1 Tenda | 2 Ac23, Ac23 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function. | |||||
CVE-2022-40845 | 1 Tenda | 2 Ac1200 V-w15ev2, W15e Firmware | 2023-12-10 | N/A | 6.5 MEDIUM |
The Tenda AC1200 Router model W15Ev2 V15.11.0.10(1576) is affected by a password exposure vulnerability. When combined with the improper authorization/improper session management vulnerability, an attacker with access to the router may be able to expose sensitive information which they're not explicitly authorized to have. | |||||
CVE-2022-37803 | 1 Tenda | 2 Ac1206, Ac1206 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromAddressNat. | |||||
CVE-2022-38510 | 1 Tenda | 2 Tx9 Pro, Tx9 Pro Firmware | 2023-12-10 | N/A | 7.8 HIGH |
Tenda_TX9pro V22.03.02.10 was discovered to contain a buffer overflow via the component httpd/SetNetControlList. | |||||
CVE-2022-32035 | 1 Tenda | 2 M3, M3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formMasterMng. | |||||
CVE-2022-38562 | 1 Tenda | 2 M3, M3 Firmware | 2023-12-10 | N/A | 7.5 HIGH |
Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formSetFixTools. This vulnerability allows attackers to cause a Denial of Service (DoS) via the lan parameter. | |||||
CVE-2022-40068 | 1 Tenda | 2 Ac21, Ac21 Firmware | 2023-12-10 | N/A | 7.5 HIGH |
Tenda AC21 V16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, function: formSetQosBand. | |||||
CVE-2022-35561 | 1 Tenda | 2 W6, W6 Firmware | 2023-12-10 | N/A | 7.5 HIGH |
A stack overflow vulnerability exists in /goform/WifiMacFilterSet in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter. | |||||
CVE-2022-32054 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
Tenda AC10 US_AC10V1.0RTL_V15.03.06.26_multi_TD01 was discovered to contain a remote code execution (RCE) vulnerability via the lanIp parameter. | |||||
CVE-2022-36568 | 1 Tenda | 2 Ac9, Ac9 Firmware | 2023-12-10 | N/A | 8.8 HIGH |
Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the list parameter at /goform/setPptpUserList. | |||||
CVE-2022-37807 | 1 Tenda | 2 Ac1206, Ac1206 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function formSetClientState. | |||||
CVE-2022-40846 | 1 Tenda | 2 Ac1200 V-w15ev2, W15e Firmware | 2023-12-10 | N/A | 4.8 MEDIUM |
In Tenda AC1200 Router model W15Ev2 V15.11.0.10(1576), a Stored Cross Site Scripting (XSS) vulnerability exists allowing an attacker to execute JavaScript code via the applications stored hostname. | |||||
CVE-2022-40107 | 1 Tenda | 2 I9, I9 Firmware | 2023-12-10 | N/A | 7.5 HIGH |
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formexeCommand function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string. |