Filtered by vendor Tenda
Subscribe
Total
741 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-47456 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2023-12-10 | N/A | 9.1 CRITICAL |
Tenda AX1806 V1.0.0.1 contains a stack overflow vulnerability in function sub_455D4, called by function fromSetWirelessRepeat. | |||||
CVE-2023-49426 | 1 Tenda | 2 Ax12, Ax12 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the list parameter at /goform/SetStaticRouteCfg. | |||||
CVE-2023-49408 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the function set_device_name. | |||||
CVE-2023-49406 | 1 Tenda | 2 W30e, W30e Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda W30E V16.01.0.12(4843) was discovered to contain a Command Execution vulnerability via the function /goform/telnet. | |||||
CVE-2023-47455 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2023-12-10 | N/A | 9.1 CRITICAL |
Tenda AX1806 V1.0.0.1 contains a heap overflow vulnerability in setSchedWifi function, in which the src and v12 are directly obtained from http request parameter schedStartTime and schedEndTime without checking their size. | |||||
CVE-2023-48964 | 1 Tenda | 2 I6, I6 Firmware | 2023-12-10 | N/A | 7.5 HIGH |
Tenda i6 V1.0.0.8(3856) is vulnerable to Buffer Overflow via /goform/WifiMacFilterSet. | |||||
CVE-2023-49409 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution vulnerability via the function /goform/telnet. | |||||
CVE-2023-50001 | 1 Tenda | 2 W30e, W30e Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formUpgradeMeshOnline. | |||||
CVE-2023-49436 | 1 Tenda | 2 Ax9, Ax9 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'list' parameter at /goform/SetNetControlList. | |||||
CVE-2023-49429 | 1 Tenda | 2 Ax9, Ax9 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AX9 V22.03.01.46 was discovered to contain a SQL command injection vulnerability in the 'setDeviceInfo' feature through the 'mac' parameter at /goform/setModules. | |||||
CVE-2023-49404 | 1 Tenda | 2 W30e, W30e Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formAdvancedSetListSet. | |||||
CVE-2023-50000 | 1 Tenda | 2 W30e, W30e Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formResetMeshNode. | |||||
CVE-2023-45482 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the urls parameter in the function get_parentControl_list_Info. | |||||
CVE-2023-49046 | 1 Tenda | 2 Ax1803, Ax1803 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Stack Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the devName parameter in the function formAddMacfilterRule. | |||||
CVE-2023-49040 | 1 Tenda | 2 Ax1803, Ax1803 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
An issue in Tneda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the adslPwd parameter in the form_fast_setting_internet_set function. | |||||
CVE-2023-49042 | 1 Tenda | 2 Ax1803, Ax1803 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Heap Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the schedStartTime parameter or the schedEndTime parameter in the function setSchedWifi. | |||||
CVE-2023-45481 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the firewallEn parameter in the function SetFirewallCfg. | |||||
CVE-2023-49405 | 1 Tenda | 2 W30e, W30e Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function UploadCfg. | |||||
CVE-2023-49403 | 1 Tenda | 2 W30e, W30e Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability via the function setFixTools. | |||||
CVE-2023-45480 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the src parameter in the function sub_47D878. |