Vulnerabilities (CVE)

Filtered by vendor Tenda Subscribe
Total 801 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-37814 1 Tenda 2 Ac1206, Ac1206 Firmware 2024-02-28 N/A 9.8 CRITICAL
Tenda AC1206 V15.03.06.23 was discovered to contain multiple stack overflows via the deviceMac and the device_id parameters in the function addWifiMacFilter.
CVE-2022-43102 1 Tenda 2 Ac23, Ac23 Firmware 2024-02-28 N/A 9.8 CRITICAL
Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the timeZone parameter in the fromSetSysTime function.
CVE-2022-40074 1 Tenda 2 Ac21, Ac21 Firmware 2024-02-28 N/A 7.5 HIGH
Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, setSchedWifi.
CVE-2022-42164 1 Tenda 2 Ac10, Ac10 Firmware 2024-02-28 N/A 9.8 CRITICAL
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formSetClientState.
CVE-2022-43024 1 Tenda 2 Tx3, Tx3 Firmware 2024-02-28 N/A 9.8 CRITICAL
Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the list parameter at /goform/SetVirtualServerCfg.
CVE-2022-40102 1 Tenda 2 I9, I9 Firmware 2024-02-28 N/A 7.5 HIGH
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formwrlSSIDset function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.
CVE-2022-32033 1 Tenda 2 Ax1806, Ax1806 Firmware 2024-02-28 7.8 HIGH 7.5 HIGH
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the function formSetVirtualSer.
CVE-2022-42081 1 Tenda 2 Ac1206, Ac1206 Firmware 2024-02-28 N/A 7.5 HIGH
Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 was discovered to contain a stack overflow via sched_end_time parameter.
CVE-2022-36570 1 Tenda 2 Ac9, Ac9 Firmware 2024-02-28 N/A 7.2 HIGH
Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the time parameter at /goform/SetLEDCfg.
CVE-2022-40855 1 Tenda 2 W20e, W20e Firmware 2024-02-28 N/A 9.8 CRITICAL
Tenda W20E router V15.11.0.6 contains a stack overflow in the function formSetPortMapping with post request 'goform/setPortMapping/'. This vulnerability allows attackers to cause a Denial of Service (DoS) or Remote Code Execution (RCE) via the portMappingServer, portMappingProtocol, portMappingWan, porMappingtInternal, and portMappingExternal parameters.
CVE-2022-32041 1 Tenda 2 M3, M3 Firmware 2024-02-28 5.0 MEDIUM 7.5 HIGH
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formGetPassengerAnalyseData.
CVE-2022-42171 1 Tenda 2 Ac10, Ac10 Firmware 2024-02-28 N/A 9.8 CRITICAL
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/saveParentControlInfo.
CVE-2022-40071 1 Tenda 2 Ac21, Ac21 Firmware 2024-02-28 N/A 7.5 HIGH
Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, formSetDeviceName.
CVE-2022-38510 1 Tenda 2 Tx9 Pro, Tx9 Pro Firmware 2024-02-28 N/A 7.8 HIGH
Tenda_TX9pro V22.03.02.10 was discovered to contain a buffer overflow via the component httpd/SetNetControlList.
CVE-2022-38314 1 Tenda 2 Ac18, Ac18 Firmware 2024-02-28 N/A 9.8 CRITICAL
Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain a stack overflow via the urls parameter at /goform/saveParentControlInfo.
CVE-2022-32034 1 Tenda 2 M3, M3 Firmware 2024-02-28 7.8 HIGH 7.5 HIGH
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the items parameter in the function formdelMasteraclist.
CVE-2022-40103 1 Tenda 2 I9, I9 Firmware 2024-02-28 N/A 5.5 MEDIUM
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formSetAutoPing function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.
CVE-2022-32032 1 Tenda 2 Ax1806, Ax1806 Firmware 2024-02-28 10.0 HIGH 9.8 CRITICAL
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the deviceList parameter in the function formAddMacfilterRule.
CVE-2022-32037 1 Tenda 2 M3, M3 Firmware 2024-02-28 5.0 MEDIUM 7.5 HIGH
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAPCfg.
CVE-2022-42087 1 Tenda 2 Ax1803, Ax1803 Firmware 2024-02-28 N/A 6.5 MEDIUM
Tenda AX1803 US_AX1803v2.0br_v1.0.0.1_2994_CN_ZGYD01_4 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.