Filtered by vendor Tenda
Subscribe
Total
741 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-27374 | 1 Tenda | 2 Ax12, Ax12 Firmware | 2023-12-10 | 7.1 HIGH | 6.5 MEDIUM |
| Tenda AX12 V22.03.01.21_CN was discovered to contain a Cross-Site Request Forgery (CSRF) via the function sub_42E328 at /goform/SysToolReboot. | |||||
| CVE-2021-45391 | 1 Tenda | 2 Ax12, Ax12 Firmware | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
| A Buffer Overflow vulnerability exists in Tenda Router AX12 V22.03.01.21_CN in the sub_422CE4 function in the goform/setIPv6Status binary file /usr/sbin/httpd via the conType parameter, which causes a Denial of Service. | |||||
| CVE-2022-24157 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetMacFilterCfg. This vulnerability allows attackers to cause a Denial of Service (DoS) via the deviceList parameter. | |||||
| CVE-2022-24163 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service (DoS) via the timeZone parameter. | |||||
| CVE-2022-24152 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetRouteStatic. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter. | |||||
| CVE-2022-24144 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function WanParameterSetting. This vulnerability allows attackers to execute arbitrary commands via the gateway, dns1, and dns2 parameters. | |||||
| CVE-2022-24149 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetWirelessRepeat. This vulnerability allows attackers to cause a Denial of Service (DoS) via the wpapsk_crypto parameter. | |||||
| CVE-2022-24156 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetVirtualSer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter. | |||||
| CVE-2022-24158 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetIpMacBind. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter. | |||||
| CVE-2022-24146 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetQosBand. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter. | |||||
| CVE-2022-24159 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetPPTPServer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the startIp and endIp parameters. | |||||
| CVE-2022-24160 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetDeviceName. This vulnerability allows attackers to cause a Denial of Service (DoS) via the devName parameter. | |||||
| CVE-2022-24148 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg. This vulnerability allows attackers to execute arbitrary commands via the dmzIp parameter. | |||||
| CVE-2022-24151 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetWifiGusetBasic. This vulnerability allows attackers to cause a Denial of Service (DoS) via the shareSpeed parameter. | |||||
| CVE-2022-24143 | 1 Tenda | 4 Ax12, Ax12 Firmware, Ax3 and 1 more | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN and AX12 22.03.01.2_CN was discovered to contain a stack overflow in the function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS) via the timeZone parameter. | |||||
| CVE-2022-24154 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetRebootTimer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the rebootTime parameter. | |||||
| CVE-2022-24162 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function saveParentControlInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the time parameter. | |||||
| CVE-2022-24161 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a heap overflow in the function GetParentControlInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the mac parameter. | |||||
| CVE-2022-24150 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function formSetSafeWanWebMan. This vulnerability allows attackers to execute arbitrary commands via the remoteIp parameter. | |||||
| CVE-2022-24147 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromAdvSetMacMtuWan. This vulnerability allows attackers to cause a Denial of Service (DoS) via the wanMTU, wanSpeed, cloneType, mac, and serviceName parameters. | |||||