FH1202
by Tenda
CVEs (184)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-42978 | Cri | 0.64 | 9.8 | 0.01 | Aug 15, 2024 | An issue in the handler function in /goform/telnet of Tenda FH1206 v02.03.01.35 allows attackers to execute arbitrary commands via a crafted HTTP request. | ||
| CVE-2024-42947 | Cri | 0.64 | 9.8 | 0.01 | Aug 15, 2024 | An issue in the handler function in /goform/telnet of Tenda FH1201 v1.2.0.14 (408) allows attackers to execute arbitrary commands via a crafted HTTP request. | ||
| CVE-2024-41473 | Cri | 0.64 | 9.8 | 0.07 | Jul 25, 2024 | Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the mac parameter at ip/goform/WriteFacMac | ||
| CVE-2024-41468 | Cri | 0.64 | 9.8 | 0.05 | Jul 25, 2024 | Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the cmdinput parameter at /goform/exeCommand | ||
| CVE-2024-41461 | Cri | 0.64 | 9.8 | 0.01 | Jul 24, 2024 | Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the list1 parameter at ip/goform/DhcpListClient. | ||
| CVE-2024-41460 | Cri | 0.64 | 9.8 | 0.01 | Jul 24, 2024 | Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter at ip/goform/RouteStatic. | ||
| CVE-2024-41459 | Cri | 0.64 | 9.8 | 0.01 | Jul 24, 2024 | Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter at ip/goform/QuickIndex. | ||
| CVE-2024-35339 | Cri | 0.64 | 9.8 | 0.02 | May 24, 2024 | Tenda FH1206 V1.2.0.8(8155) was discovered to contain a command injection vulnerability via the mac parameter at ip/goform/WriteFacMac. | ||
| CVE-2024-34945 | Cri | 0.64 | 9.8 | 0.01 | May 14, 2024 | Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the PPW parameter at ip/goform/WizardHandle. | ||
| CVE-2024-34943 | Cri | 0.64 | 9.8 | 0.01 | May 14, 2024 | Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/NatStaticSetting. | ||
| CVE-2024-33215 | Cri | 0.64 | 9.8 | 0.01 | Apr 23, 2024 | Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/addressNat. | ||
| CVE-2024-30630 | Cri | 0.64 | 9.8 | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the time parameter from saveParentControlInfo function. | ||
| CVE-2024-30628 | Cri | 0.64 | 9.8 | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the page parameter from fromAddressNat function. | ||
| CVE-2024-30622 | Cri | 0.64 | 9.8 | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the mitInterface parameter from fromAddressNat function. | ||
| CVE-2024-30602 | Cri | 0.64 | 9.8 | 0.01 | Mar 28, 2024 | Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedStartTime parameter of the setSchedWifi function. | ||
| CVE-2024-30589 | Cri | 0.64 | 9.8 | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability in the entrys parameter of the fromAddressNat function. | ||
| CVE-2024-30587 | Cri | 0.64 | 9.8 | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the urls parameter of the saveParentControlInfo function. | ||
| CVE-2024-30584 | Cri | 0.64 | 9.8 | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security parameter of the formWifiBasicSet function. | ||
| CVE-2024-30596 | Cri | 0.64 | 9.8 | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the formSetDeviceName function. | ||
| CVE-2024-30593 | Cri | 0.64 | 9.8 | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability located in the deviceName parameter of the formSetDeviceName function. |
- risk 0.64cvss 9.8epss 0.01
An issue in the handler function in /goform/telnet of Tenda FH1206 v02.03.01.35 allows attackers to execute arbitrary commands via a crafted HTTP request.
- risk 0.64cvss 9.8epss 0.01
An issue in the handler function in /goform/telnet of Tenda FH1201 v1.2.0.14 (408) allows attackers to execute arbitrary commands via a crafted HTTP request.
- risk 0.64cvss 9.8epss 0.07
Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the mac parameter at ip/goform/WriteFacMac
- risk 0.64cvss 9.8epss 0.05
Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the cmdinput parameter at /goform/exeCommand
- risk 0.64cvss 9.8epss 0.01
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the list1 parameter at ip/goform/DhcpListClient.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter at ip/goform/RouteStatic.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter at ip/goform/QuickIndex.
- risk 0.64cvss 9.8epss 0.02
Tenda FH1206 V1.2.0.8(8155) was discovered to contain a command injection vulnerability via the mac parameter at ip/goform/WriteFacMac.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the PPW parameter at ip/goform/WizardHandle.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/NatStaticSetting.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/addressNat.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the time parameter from saveParentControlInfo function.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the page parameter from fromAddressNat function.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the mitInterface parameter from fromAddressNat function.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedStartTime parameter of the setSchedWifi function.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability in the entrys parameter of the fromAddressNat function.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the urls parameter of the saveParentControlInfo function.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security parameter of the formWifiBasicSet function.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the formSetDeviceName function.
- risk 0.64cvss 9.8epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability located in the deviceName parameter of the formSetDeviceName function.
Page 1 of 10