Filtered by vendor Tenda
Subscriptions
Total
916 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-11061 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2024-11-13 | 8.8 High |
A vulnerability classified as critical was found in Tenda AC10 16.03.10.13. Affected by this vulnerability is the function FUN_0044db3c of the file /goform/fast_setting_wifi_set. The manipulation of the argument timeZone leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. | ||||
CVE-2023-37144 | 2 Tenda, Tendacn | 2 Ac10, Ac10 Firmware | 2024-11-13 | 9.8 Critical |
Tenda AC10 v15.03.06.26 was discovered to contain a command injection vulnerability via the mac parameter in the function formWriteFacMac. | ||||
CVE-2024-0994 | 1 Tenda | 2 W6, W6 Firmware | 2024-11-12 | 7.2 High |
A vulnerability was found in Tenda W6 1.0.0.9(4122). It has been declared as critical. Affected by this vulnerability is the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-252259. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. | ||||
CVE-2024-11056 | 1 Tenda | 1 Ac10 Firmware | 2024-11-12 | 8.8 High |
A vulnerability, which was classified as critical, was found in Tenda AC10 16.03.10.13. Affected is the function FUN_0046AC38 of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. | ||||
CVE-2023-37700 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2024-11-12 | 9.8 Critical |
Tenda FH1203 V2.0.1.6 was discovered to contain a stack overflow via the ssid parameter in the form_fast_setting_wifi_set function. | ||||
CVE-2023-37701 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2024-11-12 | 9.8 Critical |
Tenda FH1203 V2.0.1.6 was discovered to contain a stack overflow via the deviceId parameter in the addWifiMacFilter function. | ||||
CVE-2023-37702 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2024-11-12 | 9.8 Critical |
Tenda FH1203 V2.0.1.6 was discovered to contain a stack overflow via the deviceId parameter in the formSetDeviceName function. | ||||
CVE-2023-37704 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2024-11-12 | 9.8 Critical |
Tenda FH1203 V2.0.1.6 was discovered to contain a stack overflow via the deviceId parameter in the formSetClientState function. | ||||
CVE-2023-37706 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2024-11-12 | 9.8 Critical |
Tenda FH1203 V2.0.1.6 was discovered to contain a stack overflow via the entrys parameter in the fromAddressNat function. | ||||
CVE-2023-37707 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2024-11-12 | 9.8 Critical |
Tenda FH1203 V2.0.1.6 was discovered to contain a stack overflow via the page parameter in the fromVirtualSer function. | ||||
CVE-2023-37710 | 1 Tenda | 4 Ac10, Ac10 Firmware, Ac1206 and 1 more | 2024-11-12 | 9.8 Critical |
Tenda AC1206 V15.03.06.23 and AC10 V15.03.06.47 were discovered to contain a stack overflow in the wpapsk_crypto parameter in the fromSetWirelessRepeat function. | ||||
CVE-2023-37711 | 1 Tenda | 4 Ac10, Ac10 Firmware, Ac1206 and 1 more | 2024-11-12 | 9.8 Critical |
Tenda AC1206 V15.03.06.23 and AC10 V15.03.06.47 were discovered to contain a stack overflow in the deviceId parameter in the saveParentControlInfo function. | ||||
CVE-2023-37703 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2024-11-12 | 9.8 Critical |
Tenda FH1203 V2.0.1.6 was discovered to contain a stack overflow via the speed_dir parameter in the formSetSpeedWan function. | ||||
CVE-2023-37705 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2024-11-12 | 9.8 Critical |
Tenda FH1203 V2.0.1.6 was discovered to contain a stack overflow via the page parameter in the fromAddressNat function. | ||||
CVE-2024-51409 | 1 Tenda | 1 O3 Firmware | 2024-11-08 | 6.5 Medium |
Buffer Overflow vulnerability in Tenda O3 v.1.0.0.5 allows a remote attacker to cause a denial of service via a network packet in a fixed format to a router running the corresponding version of the firmware. | ||||
CVE-2024-10750 | 1 Tenda | 2 I22, I22 Firmware | 2024-11-07 | 6.5 Medium |
A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as problematic. Affected by this vulnerability is the function websReadEvent of the file /goform/GetIPTV?fgHPOST/goform/SysToo. The manipulation of the argument Content-Length leads to null pointer dereference. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. | ||||
CVE-2024-51116 | 1 Tenda | 1 Ac6 Firmware | 2024-11-06 | 8.8 High |
Tenda AC6 v2.0 V15.03.06.50 was discovered to contain a buffer overflow in the function 'formSetPPTPServer'. | ||||
CVE-2024-32305 | 1 Tenda | 1 A18 Firmware | 2024-11-06 | 8.8 High |
Tenda A18 v15.03.05.05 firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function. | ||||
CVE-2024-32299 | 1 Tenda | 1 Fh1203 Firmware | 2024-11-05 | 8.8 High |
Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function. | ||||
CVE-2024-10661 | 1 Tenda | 2 Ac15, Ac15 Firmware | 2024-11-05 | 8.8 High |
A vulnerability has been found in Tenda AC15 15.03.05.19 and classified as critical. This vulnerability affects the function SetDlnaCfg of the file /goform/SetDlnaCfg. The manipulation of the argument scanList leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. |