F1203
by Tenda
CVEs (31)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-38940 | Cri | 0.64 | 9.8 | 0.01 | Aug 7, 2023 | Tenda F1203 V2.0.1.6, FH1203 V2.0.1.6 and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the ssid parameter in the form_fast_setting_wifi_set function. | ||
| CVE-2023-38934 | Cri | 0.64 | 9.8 | 0.01 | Aug 7, 2023 | Tenda F1203 V2.0.1.6, FH1203 V2.0.1.6 and FH1205 V2.0.0.7(775) was discovered to contain a stack overflow via the deviceId parameter in the formSetDeviceName function. | ||
| CVE-2023-38933 | Cri | 0.64 | 9.8 | 0.01 | Aug 7, 2023 | Tenda AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0 V15.03.06.28, FH1203 V2.0.1.6 and AC9 V3.0 V15.03.06.42_multi, and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the deviceId parameter in the formSetClientState function. | ||
| CVE-2022-46538 | Cri | 0.64 | 9.8 | 0.02 | Dec 20, 2022 | Tenda F1203 V2.0.1.6 was discovered to contain a command injection vulnerability via the mac parameter at /goform/WriteFacMac. | ||
| CVE-2024-2979 | Hig | 0.57 | 8.8 | 0.02 | Mar 27, 2024 | A vulnerability classified as critical was found in Tenda F1203 2.0.1.6. This vulnerability affects the function setSchedWifi of the file /goform/openSchedWifi. The manipulation of the argument schedStartTime/schedEndTime leads to stack-based buffer overflow. The attack can be… | ||
| CVE-2024-2978 | Hig | 0.57 | 8.8 | 0.02 | Mar 27, 2024 | A vulnerability classified as critical has been found in Tenda F1203 2.0.1.6. This affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The… | ||
| CVE-2024-2977 | Hig | 0.57 | 8.8 | 0.02 | Mar 27, 2024 | A vulnerability was found in Tenda F1203 2.0.1.6. It has been rated as critical. Affected by this issue is the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack may be launched… | ||
| CVE-2024-2976 | Hig | 0.57 | 8.8 | 0.02 | Mar 27, 2024 | A vulnerability was found in Tenda F1203 2.0.1.6. It has been declared as critical. Affected by this vulnerability is the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. The attack… | ||
| CVE-2024-32310 | Hig | 0.52 | 8.0 | 0.01 | Apr 17, 2024 | Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability located in the PPW parameter of the fromWizardHandle function. | ||
| CVE-2022-46551 | Hig | 0.49 | 7.5 | 0.01 | Dec 20, 2022 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the time parameter at /goform/saveParentControlInfo. | ||
| CVE-2022-46550 | Hig | 0.49 | 7.5 | 0.01 | Dec 20, 2022 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the urls parameter at /goform/saveParentControlInfo. | ||
| CVE-2022-46549 | Hig | 0.49 | 7.5 | 0.01 | Dec 20, 2022 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceId parameter at /goform/saveParentControlInfo. | ||
| CVE-2022-46548 | Hig | 0.49 | 7.5 | 0.01 | Dec 20, 2022 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/DhcpListClient. | ||
| CVE-2022-46547 | Hig | 0.49 | 7.5 | 0.01 | Dec 20, 2022 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/VirtualSer. | ||
| CVE-2022-46546 | Hig | 0.49 | 7.5 | 0.01 | Dec 20, 2022 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the entrys parameter at /goform/RouteStatic. | ||
| CVE-2022-46545 | Hig | 0.49 | 7.5 | 0.01 | Dec 20, 2022 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/NatStaticSetting. | ||
| CVE-2022-46544 | Hig | 0.49 | 7.5 | 0.01 | Dec 20, 2022 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the cmdinput parameter at /goform/exeCommand. | ||
| CVE-2022-46543 | Hig | 0.49 | 7.5 | 0.01 | Dec 20, 2022 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the mitInterface parameter at /goform/addressNat. | ||
| CVE-2022-46542 | Hig | 0.49 | 7.5 | 0.01 | Dec 20, 2022 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/addressNat. | ||
| CVE-2022-46541 | Hig | 0.49 | 7.5 | 0.01 | Dec 20, 2022 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the ssid parameter at /goform/fast_setting_wifi_set. |
- risk 0.64cvss 9.8epss 0.01
Tenda F1203 V2.0.1.6, FH1203 V2.0.1.6 and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the ssid parameter in the form_fast_setting_wifi_set function.
- risk 0.64cvss 9.8epss 0.01
Tenda F1203 V2.0.1.6, FH1203 V2.0.1.6 and FH1205 V2.0.0.7(775) was discovered to contain a stack overflow via the deviceId parameter in the formSetDeviceName function.
- risk 0.64cvss 9.8epss 0.01
Tenda AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0 V15.03.06.28, FH1203 V2.0.1.6 and AC9 V3.0 V15.03.06.42_multi, and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the deviceId parameter in the formSetClientState function.
- risk 0.64cvss 9.8epss 0.02
Tenda F1203 V2.0.1.6 was discovered to contain a command injection vulnerability via the mac parameter at /goform/WriteFacMac.
- risk 0.57cvss 8.8epss 0.02
A vulnerability classified as critical was found in Tenda F1203 2.0.1.6. This vulnerability affects the function setSchedWifi of the file /goform/openSchedWifi. The manipulation of the argument schedStartTime/schedEndTime leads to stack-based buffer overflow. The attack can be…
- risk 0.57cvss 8.8epss 0.02
A vulnerability classified as critical has been found in Tenda F1203 2.0.1.6. This affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The…
- risk 0.57cvss 8.8epss 0.02
A vulnerability was found in Tenda F1203 2.0.1.6. It has been rated as critical. Affected by this issue is the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack may be launched…
- risk 0.57cvss 8.8epss 0.02
A vulnerability was found in Tenda F1203 2.0.1.6. It has been declared as critical. Affected by this vulnerability is the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. The attack…
- risk 0.52cvss 8.0epss 0.01
Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability located in the PPW parameter of the fromWizardHandle function.
- risk 0.49cvss 7.5epss 0.01
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the time parameter at /goform/saveParentControlInfo.
- risk 0.49cvss 7.5epss 0.01
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the urls parameter at /goform/saveParentControlInfo.
- risk 0.49cvss 7.5epss 0.01
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceId parameter at /goform/saveParentControlInfo.
- risk 0.49cvss 7.5epss 0.01
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/DhcpListClient.
- risk 0.49cvss 7.5epss 0.01
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/VirtualSer.
- risk 0.49cvss 7.5epss 0.01
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the entrys parameter at /goform/RouteStatic.
- risk 0.49cvss 7.5epss 0.01
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/NatStaticSetting.
- risk 0.49cvss 7.5epss 0.01
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the cmdinput parameter at /goform/exeCommand.
- risk 0.49cvss 7.5epss 0.01
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the mitInterface parameter at /goform/addressNat.
- risk 0.49cvss 7.5epss 0.01
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/addressNat.
- risk 0.49cvss 7.5epss 0.01
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the ssid parameter at /goform/fast_setting_wifi_set.
Page 1 of 2