VYPR

PA6 Wi-Fi Powerline extender

by Tenda

CVEs (3)

  • CVE-2019-19505HigJun 25, 2020
    risk 0.57cvss 8.8epss 0.04

    Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the "Wireless" section in the web-UI. By sending a specially crafted hostname, a remote attacker could overflow a buffer and execute arbitrary code…

  • CVE-2019-16213HigJun 25, 2020
    risk 0.57cvss 8.8epss 0.03

    Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially crafted string, an attacker could modify the device name of an attached PLC adapter to inject and execute arbitrary…

  • CVE-2019-19506HigJun 25, 2020
    risk 0.49cvss 7.5epss 0.01

    Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 is vulnerable to a denial of service, caused by an error in the "homeplugd" process. By sending a specially crafted UDP packet, an attacker could exploit this vulnerability to cause the device to reboot.