VYPR

Vendor CVEs

Tenda

All CVEs

2,034 total · sorted by risk
  • CVE-2024-4066Apr 23, 2024
    risk 0.00cvss epss 0.02

    A vulnerability classified as critical has been found in Tenda AC8 16.03.34.09. Affected is the function fromAdvSetMacMtuWan of the file /goform/AdvSetMacMtuWan. The manipulation of the argument wanMTU/wanSpeed/cloneType/mac/serviceName/serverName leads to stack-based buffer…

  • CVE-2024-4065Apr 23, 2024
    risk 0.00cvss epss 0.02

    A vulnerability was found in Tenda AC8 16.03.34.09. It has been rated as critical. This issue affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. The attack may be initiated…

  • CVE-2024-4064Apr 23, 2024
    risk 0.00cvss epss 0.02

    A vulnerability was found in Tenda AC8 16.03.34.09. It has been declared as critical. This vulnerability affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. The attack can be…

  • CVE-2024-33214Apr 23, 2024
    risk 0.00cvss epss 0.01

    Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter in ip/goform/RouteStatic.

  • CVE-2024-33217Apr 23, 2024
    risk 0.00cvss epss 0.01

    Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter in ip/goform/addressNat.

  • CVE-2024-33215Apr 23, 2024
    risk 0.00cvss epss 0.01

    Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/addressNat.

  • CVE-2024-33213Apr 23, 2024
    risk 0.00cvss epss 0.00

    Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/RouteStatic.

  • CVE-2024-33212Apr 23, 2024
    risk 0.00cvss epss 0.01

    Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter in ip/goform/setcfm.

  • CVE-2024-33211Apr 23, 2024
    risk 0.00cvss epss 0.00

    Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter in ip/goform/QuickIndex.

  • CVE-2024-4020Apr 20, 2024
    risk 0.00cvss epss 0.02

    A vulnerability was found in Tenda FH1206 1.2.0.8(8155) and classified as critical. This issue affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the argument entrys leads to buffer overflow. The attack may be initiated remotely. The exploit…

  • CVE-2024-3910Apr 17, 2024
    risk 0.00cvss epss 0.02

    A vulnerability, which was classified as critical, has been found in Tenda AC500 2.0.1.9(1307). Affected by this issue is the function fromDhcpListClient of the file /goform/DhcpListClient. The manipulation of the argument page leads to stack-based buffer overflow. The attack…

  • CVE-2024-3909Apr 17, 2024
    risk 0.00cvss epss 0.02

    A vulnerability classified as critical was found in Tenda AC500 2.0.1.9(1307). Affected by this vulnerability is the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be…

  • CVE-2024-3907Apr 17, 2024
    risk 0.00cvss epss 0.02

    A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been rated as critical. This issue affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack may be initiated remotely.…

  • CVE-2024-3906Apr 17, 2024
    risk 0.00cvss epss 0.02

    A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been declared as critical. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack can be…

  • CVE-2024-3905Apr 17, 2024
    risk 0.00cvss epss 0.02

    A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been classified as critical. This affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. It is possible to initiate…

  • CVE-2024-32303Apr 17, 2024
    risk 0.00cvss epss 0.00

    Tenda AC15 v15.03.20_multi, v15.03.05.19, and v15.03.05.18 firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.

  • CVE-2024-32290Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda W30E v1.0 v1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromAddressNat function.

  • CVE-2024-32288Apr 17, 2024
    risk 0.00cvss epss 0.00

    Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page parameter in the fromwebExcptypemanFilter function.

  • CVE-2024-32313Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability located via the adslPwd parameter of the formWanParameterSetting function.

  • CVE-2024-32292Apr 17, 2024
    risk 0.00cvss epss 0.02

    Tenda W30E v1.0 V1.0.1.25(633) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.

  • CVE-2024-32306Apr 17, 2024
    risk 0.00cvss epss 0.00

    Tenda AC10U v1.0 Firmware v15.03.06.49 has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.

  • CVE-2024-32299Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function.

  • CVE-2024-32311Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.

  • CVE-2024-32316Apr 17, 2024
    risk 0.00cvss epss 0.00

    Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability in the fromDhcpListClient function.

  • CVE-2024-32282Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda FH1202 v1.2.0.14(408) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.

  • CVE-2023-46060Apr 17, 2024
    risk 0.00cvss epss 0.01

    A Buffer Overflow vulnerability in Tenda AC500 v.2.0.1.9 allows a remote attacker to cause a denial of service via the port parameter at the goform/setVlanInfo component.

  • CVE-2024-32314Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda AC500 V2.0.1.9(1307) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.

  • CVE-2024-32320Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the timeZone parameter in the formSetTimeZone function.

  • CVE-2024-32281Apr 17, 2024
    risk 0.00cvss epss 0.02

    Tenda AC7V1.0 v15.03.06.44 firmware contains a command injection vulnerablility in formexeCommand function via the cmdinput parameter.

  • CVE-2024-32310Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability located in the PPW parameter of the fromWizardHandle function.

  • CVE-2024-32287Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the qos parameter in the fromqossetting function.

  • CVE-2024-32286Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page parameter in the fromVirtualSer function.

  • CVE-2024-32302Apr 17, 2024
    risk 0.00cvss epss 0.00

    Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function.

  • CVE-2024-32293Apr 17, 2024
    risk 0.00cvss epss 0.06

    Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromDhcpListClient function.

  • CVE-2024-32305Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda A18 v15.03.05.05 firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.

  • CVE-2024-32301Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda AC7V1.0 v15.03.06.44 firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function.

  • CVE-2024-32317Apr 17, 2024
    risk 0.00cvss epss 0.00

    Tenda AC10 v4.0 V16.03.10.13 and V16.03.10.20 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.

  • CVE-2024-32312Apr 17, 2024
    risk 0.00cvss epss 0.00

    Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability located in the adslPwd parameter of the formWanParameterSetting function.

  • CVE-2024-32318Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the vlan parameter in the formSetVlanInfo function.

  • CVE-2024-32285Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the password parameter in the formaddUserName function.

  • CVE-2024-32291Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda W30E v1.0 firmware v1.0.1.25(633) has a stack overflow vulnerability via the page parameter in the fromNatlimit function.

  • CVE-2024-32307Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.

  • CVE-2024-32315Apr 17, 2024
    risk 0.00cvss epss 0.00

    Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.

  • CVE-2024-32283Apr 17, 2024
    risk 0.00cvss epss 0.01

    Tenda FH1203 V2.0.1.6 firmware has a command injection vulnerablility in formexeCommand function via the cmdinput parameter.

  • CVE-2024-3882Apr 16, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in Tenda W30E 1.0.1.25(633). It has been classified as critical. Affected is the function fromRouteStatic of the file /goform/fromRouteStatic. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the…

  • CVE-2024-3881Apr 16, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in Tenda W30E 1.0.1.25(633) and classified as critical. This issue affects the function frmL7PlotForm of the file /goform/frmL7ProtForm. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely.…

  • CVE-2024-3880Apr 16, 2024
    risk 0.00cvss epss 0.04

    A vulnerability has been found in Tenda W30E 1.0.1.25(633) and classified as critical. This vulnerability affects the function formWriteFacMac of the file /goform/WriteFacMac. The manipulation of the argument mac leads to os command injection. The attack can be initiated…

  • CVE-2024-3879Apr 16, 2024
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, was found in Tenda W30E 1.0.1.25(633). This affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack…

  • CVE-2024-3878Apr 16, 2024
    risk 0.00cvss epss 0.02

    A vulnerability, which was classified as critical, has been found in Tenda F1202 1.2.0.20(408). Affected by this issue is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. The manipulation of the argument page leads to stack-based buffer overflow.…

  • CVE-2024-3877Apr 16, 2024
    risk 0.00cvss epss 0.02

    A vulnerability classified as critical was found in Tenda F1202 1.2.0.20(408). Affected by this vulnerability is the function fromqossetting of the file /goform/fromqossetting. The manipulation of the argument qos leads to stack-based buffer overflow. The attack can be launched…

Page 23 of 41