VYPR

i22

by Tenda

CVEs (17)

  • CVE-2024-7585HigAug 7, 2024
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as critical. Affected by this vulnerability is the function formApPortalWebAuth of the file /goform/apPortalAuth. The manipulation of the argument webUserName/webUserPassword leads to buffer overflow. The…

  • CVE-2024-7584HigAug 7, 2024
    risk 0.57cvss 8.8epss 0.01

    A vulnerability, which was classified as critical, was found in Tenda i22 1.0.0.3(4687). Affected is the function formApPortalPhoneAuth of the file /goform/apPortalPhoneAuth. The manipulation of the argument data leads to buffer overflow. It is possible to launch the attack…

  • CVE-2024-7583HigAug 7, 2024
    risk 0.57cvss 8.8epss 0.01

    A vulnerability, which was classified as critical, has been found in Tenda i22 1.0.0.3(4687). This issue affects the function formApPortalOneKeyAuth of the file /goform/apPortalOneKeyAuth. The manipulation of the argument data leads to buffer overflow. The attack may be…

  • CVE-2024-7582HigAug 7, 2024
    risk 0.57cvss 8.8epss 0.01

    A vulnerability classified as critical was found in Tenda i22 1.0.0.3(4687). This vulnerability affects the function formApPortalAccessCodeAuth of the file /goform/apPortalAccessCodeAuth. The manipulation of the argument accessCode/data/acceInfo leads to buffer overflow. The…

  • CVE-2024-4252HigApr 27, 2024
    risk 0.57cvss 8.8epss 0.01

    A vulnerability classified as critical has been found in Tenda i22 1.0.0.3(4687). This affects the function formSetUrlFilterRule. The manipulation of the argument groupIndex leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The associated…

  • CVE-2022-45666HigDec 20, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDset function.

  • CVE-2022-45665HigDec 20, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the funcpara1 parameter in the formSetCfm function.

  • CVE-2022-45672HigDec 2, 2022
    risk 0.49cvss 7.5epss 0.09

    Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the formWx3AuthorizeSet function.

  • CVE-2022-45671HigDec 2, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the appData parameter in the formSetAppFilterRule function.

  • CVE-2022-45670HigDec 2, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the ping1 parameter in the formSetAutoPing function.

  • CVE-2022-45669HigDec 2, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the index parameter in the formWifiMacFilterGet function.

  • CVE-2022-45664HigDec 2, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDget function.

  • CVE-2022-45663HigDec 2, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the index parameter in the formWifiMacFilterSet function.

  • CVE-2024-10750MedNov 4, 2024
    risk 0.42cvss 6.5epss 0.01

    A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as problematic. Affected by this vulnerability is the function websReadEvent of the file /goform/GetIPTV?fgHPOST/goform/SysToo. The manipulation of the argument Content-Length leads to null pointer…

  • CVE-2022-45668MedDec 2, 2022
    risk 0.42cvss 6.5epss 0.00

    Tenda i22 V1.0.0.3(4687) is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.

  • CVE-2022-45667MedDec 2, 2022
    risk 0.42cvss 6.5epss 0.00

    Tenda i22 V1.0.0.3(4687) is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolRestoreSet.

  • CVE-2025-9297Aug 21, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was detected in Tenda i22 1.0.0.3(4687). This impacts the function formWeixinAuthInfoGet of the file /goform/wxportalauth. Performing manipulation of the argument Type results in stack-based buffer overflow. The attack can be initiated remotely. The exploit is…