Vulnerabilities (CVE)

Filtered by vendor Tenda Subscribe
Filtered by product M3
Total 35 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-51094 1 Tenda 2 M3, M3 Firmware 2023-12-30 N/A 9.8 CRITICAL
Tenda M3 V1.0.0.12(4856) was discovered to contain a Command Execution vulnerability via the function TendaTelnet.
CVE-2023-51093 1 Tenda 2 M3, M3 Firmware 2023-12-30 N/A 9.8 CRITICAL
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function fromSetLocalVlanInfo.
CVE-2023-51092 1 Tenda 2 M3, M3 Firmware 2023-12-30 N/A 9.8 CRITICAL
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function upgrade.
CVE-2023-51091 1 Tenda 2 M3, M3 Firmware 2023-12-30 N/A 9.8 CRITICAL
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function R7WebsSecurityHandler.
CVE-2023-51090 1 Tenda 2 M3, M3 Firmware 2023-12-30 N/A 9.8 CRITICAL
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formGetWeiXinConfig.
CVE-2023-51095 1 Tenda 2 M3, M3 Firmware 2023-12-30 N/A 9.8 CRITICAL
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formDelWlRfPolicy.
CVE-2022-32039 1 Tenda 2 M3, M3 Firmware 2023-12-10 5.0 MEDIUM 7.5 HIGH
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the listN parameter in the function fromDhcpListClient.
CVE-2022-38570 1 Tenda 2 M3, M3 Firmware 2023-12-10 N/A 7.5 HIGH
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow in the function formDelPushedAd. This vulnerability allows attackers to cause a Denial of Service (DoS) via the adPushUID parameter.
CVE-2022-38571 1 Tenda 2 M3, M3 Firmware 2023-12-10 N/A 7.5 HIGH
Tenda M3 V1.0.0.12(4856) was discovered to contain a buffer overflow in the function formSetGuideListItem.
CVE-2022-32041 1 Tenda 2 M3, M3 Firmware 2023-12-10 5.0 MEDIUM 7.5 HIGH
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formGetPassengerAnalyseData.
CVE-2022-38564 1 Tenda 2 M3, M3 Firmware 2023-12-10 N/A 7.5 HIGH
Tenda M3 V1.0.0.12(4856) was discovered to contain a buffer overflow vulnerability in the function formSetPicListItem. This vulnerability allows attackers to cause a Denial of Service (DoS) via the adItemUID parameter.
CVE-2022-38568 1 Tenda 2 M3, M3 Firmware 2023-12-10 N/A 7.5 HIGH
Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formSetFixTools. This vulnerability allows attackers to cause a Denial of Service (DoS) via the hostname parameter.
CVE-2022-38566 1 Tenda 2 M3, M3 Firmware 2023-12-10 N/A 7.5 HIGH
Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formEmailTest. This vulnerability allows attackers to cause a Denial of Service (DoS) via the mailname parameter.
CVE-2022-38565 1 Tenda 2 M3, M3 Firmware 2023-12-10 N/A 7.5 HIGH
Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formEmailTest. This vulnerability allows attackers to cause a Denial of Service (DoS) via the mailpwd parameter.
CVE-2022-38567 1 Tenda 2 M3, M3 Firmware 2023-12-10 N/A 7.5 HIGH
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow vulnerability in the function formSetAdConfigInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the authIPs parameter.
CVE-2022-32037 1 Tenda 2 M3, M3 Firmware 2023-12-10 5.0 MEDIUM 7.5 HIGH
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAPCfg.
CVE-2022-38569 1 Tenda 2 M3, M3 Firmware 2023-12-10 N/A 7.5 HIGH
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow in the function formDelAd.
CVE-2022-32040 1 Tenda 2 M3, M3 Firmware 2023-12-10 5.0 MEDIUM 7.5 HIGH
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetCfm.
CVE-2022-38563 1 Tenda 2 M3, M3 Firmware 2023-12-10 N/A 7.5 HIGH
Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formSetFixTools. This vulnerability allows attackers to cause a Denial of Service (DoS) via the MACAddr parameter.
CVE-2022-32036 1 Tenda 2 M3, M3 Firmware 2023-12-10 7.8 HIGH 7.5 HIGH
Tenda M3 V1.0.0.12 was discovered to contain multiple stack overflow vulnerabilities via the ssidList, storeName, and trademark parameters in the function formSetStoreWeb.