VYPR

i6

by Tenda

CVEs (9)

  • CVE-2026-1364CriJan 23, 2026
    risk 0.64cvss 9.8epss 0.01

    IAQS and I6 developed by JNC has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to directly operate system administrative functionalities.

  • CVE-2026-1363CriJan 23, 2026
    risk 0.64cvss 9.8epss 0.01

    IAQS and I6 developed by JNC has a Client-Side Enforcement of Server-Side Security vulnerability, allowing unauthenticated remote attackers to gain administrator privileges by manipulating the web front-end.

  • CVE-2023-48964HigNov 30, 2023
    risk 0.49cvss 7.5epss 0.01

    Tenda i6 V1.0.0.8(3856) is vulnerable to Buffer Overflow via /goform/WifiMacFilterSet.

  • CVE-2023-48963HigNov 30, 2023
    risk 0.49cvss 7.5epss 0.01

    Tenda i6 V1.0.0.8(3856) is vulnerable to Buffer Overflow via /goform/wifiSSIDget.

  • CVE-2026-6024HigApr 10, 2026
    risk 0.47cvss 7.3epss 0.01

    A vulnerability was determined in Tenda i6 1.0.0.7(2204). Affected by this issue is the function R7WebsSecurityHandlerfunction of the component HTTP Handler. This manipulation causes path traversal. It is possible to initiate the attack remotely. The exploit has been publicly…

  • CVE-2024-0993HigJan 29, 2024
    risk 0.47cvss 7.2epss 0.02

    A vulnerability was found in Tenda i6 1.0.0.9(3857). It has been classified as critical. Affected is the function formWifiMacFilterGet of the file /goform/WifiMacFilterGet of the component httpd. The manipulation of the argument index leads to stack-based buffer overflow. It is…

  • CVE-2024-0992HigJan 29, 2024
    risk 0.47cvss 7.2epss 0.02

    A vulnerability was found in Tenda i6 1.0.0.9(3857) and classified as critical. This issue affects the function formwrlSSIDset of the file /goform/wifiSSIDset of the component httpd. The manipulation of the argument index leads to stack-based buffer overflow. The attack may be…

  • CVE-2024-0991HigJan 29, 2024
    risk 0.47cvss 7.2epss 0.02

    A vulnerability has been found in Tenda i6 1.0.0.9(3857) and classified as critical. This vulnerability affects the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack…

  • CVE-2024-0990HigJan 29, 2024
    risk 0.47cvss 7.2epss 0.02

    A vulnerability, which was classified as critical, was found in Tenda i6 1.0.0.9(3857). This affects the function formSetAutoPing of the file /goform/setAutoPing of the component httpd. The manipulation of the argument ping1 leads to stack-based buffer overflow. It is possible…