VYPR

FH1202

by Tenda

CVEs (184)

  • CVE-2024-42978CriAug 15, 2024
    risk 0.64cvss 9.8epss 0.01

    An issue in the handler function in /goform/telnet of Tenda FH1206 v02.03.01.35 allows attackers to execute arbitrary commands via a crafted HTTP request.

  • CVE-2024-42947CriAug 15, 2024
    risk 0.64cvss 9.8epss 0.01

    An issue in the handler function in /goform/telnet of Tenda FH1201 v1.2.0.14 (408) allows attackers to execute arbitrary commands via a crafted HTTP request.

  • CVE-2024-41473CriJul 25, 2024
    risk 0.64cvss 9.8epss 0.07

    Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the mac parameter at ip/goform/WriteFacMac

  • CVE-2024-41468CriJul 25, 2024
    risk 0.64cvss 9.8epss 0.05

    Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the cmdinput parameter at /goform/exeCommand

  • CVE-2024-41461CriJul 24, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the list1 parameter at ip/goform/DhcpListClient.

  • CVE-2024-41460CriJul 24, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter at ip/goform/RouteStatic.

  • CVE-2024-41459CriJul 24, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter at ip/goform/QuickIndex.

  • CVE-2024-35339CriMay 24, 2024
    risk 0.64cvss 9.8epss 0.02

    Tenda FH1206 V1.2.0.8(8155) was discovered to contain a command injection vulnerability via the mac parameter at ip/goform/WriteFacMac.

  • CVE-2024-34945CriMay 14, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the PPW parameter at ip/goform/WizardHandle.

  • CVE-2024-34943CriMay 14, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/NatStaticSetting.

  • CVE-2024-33215CriApr 23, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/addressNat.

  • CVE-2024-30630CriMar 29, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the time parameter from saveParentControlInfo function.

  • CVE-2024-30628CriMar 29, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the page parameter from fromAddressNat function.

  • CVE-2024-30622CriMar 29, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the mitInterface parameter from fromAddressNat function.

  • CVE-2024-30602CriMar 28, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedStartTime parameter of the setSchedWifi function.

  • CVE-2024-30589CriMar 28, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability in the entrys parameter of the fromAddressNat function.

  • CVE-2024-30587CriMar 28, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the urls parameter of the saveParentControlInfo function.

  • CVE-2024-30584CriMar 28, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security parameter of the formWifiBasicSet function.

  • CVE-2024-30596CriMar 28, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the formSetDeviceName function.

  • CVE-2024-30593CriMar 28, 2024
    risk 0.64cvss 9.8epss 0.01

    Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability located in the deviceName parameter of the formSetDeviceName function.

Page 1 of 10