Vendor CVEs
Tenda
All CVEs
2,034 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-4066 | 0.00 | — | 0.02 | Apr 23, 2024 | A vulnerability classified as critical has been found in Tenda AC8 16.03.34.09. Affected is the function fromAdvSetMacMtuWan of the file /goform/AdvSetMacMtuWan. The manipulation of the argument wanMTU/wanSpeed/cloneType/mac/serviceName/serverName leads to stack-based buffer… | |||
| CVE-2024-4065 | 0.00 | — | 0.02 | Apr 23, 2024 | A vulnerability was found in Tenda AC8 16.03.34.09. It has been rated as critical. This issue affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. The attack may be initiated… | |||
| CVE-2024-4064 | 0.00 | — | 0.02 | Apr 23, 2024 | A vulnerability was found in Tenda AC8 16.03.34.09. It has been declared as critical. This vulnerability affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. The attack can be… | |||
| CVE-2024-33214 | 0.00 | — | 0.01 | Apr 23, 2024 | Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter in ip/goform/RouteStatic. | |||
| CVE-2024-33217 | 0.00 | — | 0.01 | Apr 23, 2024 | Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter in ip/goform/addressNat. | |||
| CVE-2024-33215 | 0.00 | — | 0.01 | Apr 23, 2024 | Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/addressNat. | |||
| CVE-2024-33213 | 0.00 | — | 0.00 | Apr 23, 2024 | Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/RouteStatic. | |||
| CVE-2024-33212 | 0.00 | — | 0.01 | Apr 23, 2024 | Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter in ip/goform/setcfm. | |||
| CVE-2024-33211 | 0.00 | — | 0.00 | Apr 23, 2024 | Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter in ip/goform/QuickIndex. | |||
| CVE-2024-4020 | 0.00 | — | 0.02 | Apr 20, 2024 | A vulnerability was found in Tenda FH1206 1.2.0.8(8155) and classified as critical. This issue affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the argument entrys leads to buffer overflow. The attack may be initiated remotely. The exploit… | |||
| CVE-2024-3910 | 0.00 | — | 0.02 | Apr 17, 2024 | A vulnerability, which was classified as critical, has been found in Tenda AC500 2.0.1.9(1307). Affected by this issue is the function fromDhcpListClient of the file /goform/DhcpListClient. The manipulation of the argument page leads to stack-based buffer overflow. The attack… | |||
| CVE-2024-3909 | 0.00 | — | 0.02 | Apr 17, 2024 | A vulnerability classified as critical was found in Tenda AC500 2.0.1.9(1307). Affected by this vulnerability is the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be… | |||
| CVE-2024-3907 | 0.00 | — | 0.02 | Apr 17, 2024 | A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been rated as critical. This issue affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack may be initiated remotely.… | |||
| CVE-2024-3906 | 0.00 | — | 0.02 | Apr 17, 2024 | A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been declared as critical. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack can be… | |||
| CVE-2024-3905 | 0.00 | — | 0.02 | Apr 17, 2024 | A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been classified as critical. This affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. It is possible to initiate… | |||
| CVE-2024-32303 | 0.00 | — | 0.00 | Apr 17, 2024 | Tenda AC15 v15.03.20_multi, v15.03.05.19, and v15.03.05.18 firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function. | |||
| CVE-2024-32290 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda W30E v1.0 v1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromAddressNat function. | |||
| CVE-2024-32288 | 0.00 | — | 0.00 | Apr 17, 2024 | Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page parameter in the fromwebExcptypemanFilter function. | |||
| CVE-2024-32313 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability located via the adslPwd parameter of the formWanParameterSetting function. | |||
| CVE-2024-32292 | 0.00 | — | 0.02 | Apr 17, 2024 | Tenda W30E v1.0 V1.0.1.25(633) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter. | |||
| CVE-2024-32306 | 0.00 | — | 0.00 | Apr 17, 2024 | Tenda AC10U v1.0 Firmware v15.03.06.49 has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function. | |||
| CVE-2024-32299 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function. | |||
| CVE-2024-32311 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function. | |||
| CVE-2024-32316 | 0.00 | — | 0.00 | Apr 17, 2024 | Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability in the fromDhcpListClient function. | |||
| CVE-2024-32282 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda FH1202 v1.2.0.14(408) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter. | |||
| CVE-2023-46060 | 0.00 | — | 0.01 | Apr 17, 2024 | A Buffer Overflow vulnerability in Tenda AC500 v.2.0.1.9 allows a remote attacker to cause a denial of service via the port parameter at the goform/setVlanInfo component. | |||
| CVE-2024-32314 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda AC500 V2.0.1.9(1307) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter. | |||
| CVE-2024-32320 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the timeZone parameter in the formSetTimeZone function. | |||
| CVE-2024-32281 | 0.00 | — | 0.02 | Apr 17, 2024 | Tenda AC7V1.0 v15.03.06.44 firmware contains a command injection vulnerablility in formexeCommand function via the cmdinput parameter. | |||
| CVE-2024-32310 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability located in the PPW parameter of the fromWizardHandle function. | |||
| CVE-2024-32287 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the qos parameter in the fromqossetting function. | |||
| CVE-2024-32286 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page parameter in the fromVirtualSer function. | |||
| CVE-2024-32302 | 0.00 | — | 0.00 | Apr 17, 2024 | Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function. | |||
| CVE-2024-32293 | 0.00 | — | 0.06 | Apr 17, 2024 | Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromDhcpListClient function. | |||
| CVE-2024-32305 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda A18 v15.03.05.05 firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function. | |||
| CVE-2024-32301 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda AC7V1.0 v15.03.06.44 firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function. | |||
| CVE-2024-32317 | 0.00 | — | 0.00 | Apr 17, 2024 | Tenda AC10 v4.0 V16.03.10.13 and V16.03.10.20 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function. | |||
| CVE-2024-32312 | 0.00 | — | 0.00 | Apr 17, 2024 | Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability located in the adslPwd parameter of the formWanParameterSetting function. | |||
| CVE-2024-32318 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the vlan parameter in the formSetVlanInfo function. | |||
| CVE-2024-32285 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the password parameter in the formaddUserName function. | |||
| CVE-2024-32291 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda W30E v1.0 firmware v1.0.1.25(633) has a stack overflow vulnerability via the page parameter in the fromNatlimit function. | |||
| CVE-2024-32307 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function. | |||
| CVE-2024-32315 | 0.00 | — | 0.00 | Apr 17, 2024 | Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function. | |||
| CVE-2024-32283 | 0.00 | — | 0.01 | Apr 17, 2024 | Tenda FH1203 V2.0.1.6 firmware has a command injection vulnerablility in formexeCommand function via the cmdinput parameter. | |||
| CVE-2024-3882 | 0.00 | — | 0.01 | Apr 16, 2024 | A vulnerability was found in Tenda W30E 1.0.1.25(633). It has been classified as critical. Affected is the function fromRouteStatic of the file /goform/fromRouteStatic. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the… | |||
| CVE-2024-3881 | 0.00 | — | 0.01 | Apr 16, 2024 | A vulnerability was found in Tenda W30E 1.0.1.25(633) and classified as critical. This issue affects the function frmL7PlotForm of the file /goform/frmL7ProtForm. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely.… | |||
| CVE-2024-3880 | 0.00 | — | 0.04 | Apr 16, 2024 | A vulnerability has been found in Tenda W30E 1.0.1.25(633) and classified as critical. This vulnerability affects the function formWriteFacMac of the file /goform/WriteFacMac. The manipulation of the argument mac leads to os command injection. The attack can be initiated… | |||
| CVE-2024-3879 | 0.00 | — | 0.01 | Apr 16, 2024 | A vulnerability, which was classified as critical, was found in Tenda W30E 1.0.1.25(633). This affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack… | |||
| CVE-2024-3878 | 0.00 | — | 0.02 | Apr 16, 2024 | A vulnerability, which was classified as critical, has been found in Tenda F1202 1.2.0.20(408). Affected by this issue is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. The manipulation of the argument page leads to stack-based buffer overflow.… | |||
| CVE-2024-3877 | 0.00 | — | 0.02 | Apr 16, 2024 | A vulnerability classified as critical was found in Tenda F1202 1.2.0.20(408). Affected by this vulnerability is the function fromqossetting of the file /goform/fromqossetting. The manipulation of the argument qos leads to stack-based buffer overflow. The attack can be launched… |
- CVE-2024-4066Apr 23, 2024risk 0.00cvss —epss 0.02
A vulnerability classified as critical has been found in Tenda AC8 16.03.34.09. Affected is the function fromAdvSetMacMtuWan of the file /goform/AdvSetMacMtuWan. The manipulation of the argument wanMTU/wanSpeed/cloneType/mac/serviceName/serverName leads to stack-based buffer…
- CVE-2024-4065Apr 23, 2024risk 0.00cvss —epss 0.02
A vulnerability was found in Tenda AC8 16.03.34.09. It has been rated as critical. This issue affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. The attack may be initiated…
- CVE-2024-4064Apr 23, 2024risk 0.00cvss —epss 0.02
A vulnerability was found in Tenda AC8 16.03.34.09. It has been declared as critical. This vulnerability affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. The attack can be…
- CVE-2024-33214Apr 23, 2024risk 0.00cvss —epss 0.01
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter in ip/goform/RouteStatic.
- CVE-2024-33217Apr 23, 2024risk 0.00cvss —epss 0.01
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter in ip/goform/addressNat.
- CVE-2024-33215Apr 23, 2024risk 0.00cvss —epss 0.01
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/addressNat.
- CVE-2024-33213Apr 23, 2024risk 0.00cvss —epss 0.00
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/RouteStatic.
- CVE-2024-33212Apr 23, 2024risk 0.00cvss —epss 0.01
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter in ip/goform/setcfm.
- CVE-2024-33211Apr 23, 2024risk 0.00cvss —epss 0.00
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter in ip/goform/QuickIndex.
- CVE-2024-4020Apr 20, 2024risk 0.00cvss —epss 0.02
A vulnerability was found in Tenda FH1206 1.2.0.8(8155) and classified as critical. This issue affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the argument entrys leads to buffer overflow. The attack may be initiated remotely. The exploit…
- CVE-2024-3910Apr 17, 2024risk 0.00cvss —epss 0.02
A vulnerability, which was classified as critical, has been found in Tenda AC500 2.0.1.9(1307). Affected by this issue is the function fromDhcpListClient of the file /goform/DhcpListClient. The manipulation of the argument page leads to stack-based buffer overflow. The attack…
- CVE-2024-3909Apr 17, 2024risk 0.00cvss —epss 0.02
A vulnerability classified as critical was found in Tenda AC500 2.0.1.9(1307). Affected by this vulnerability is the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be…
- CVE-2024-3907Apr 17, 2024risk 0.00cvss —epss 0.02
A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been rated as critical. This issue affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack may be initiated remotely.…
- CVE-2024-3906Apr 17, 2024risk 0.00cvss —epss 0.02
A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been declared as critical. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack can be…
- CVE-2024-3905Apr 17, 2024risk 0.00cvss —epss 0.02
A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has been classified as critical. This affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. It is possible to initiate…
- CVE-2024-32303Apr 17, 2024risk 0.00cvss —epss 0.00
Tenda AC15 v15.03.20_multi, v15.03.05.19, and v15.03.05.18 firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.
- CVE-2024-32290Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda W30E v1.0 v1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromAddressNat function.
- CVE-2024-32288Apr 17, 2024risk 0.00cvss —epss 0.00
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page parameter in the fromwebExcptypemanFilter function.
- CVE-2024-32313Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability located via the adslPwd parameter of the formWanParameterSetting function.
- CVE-2024-32292Apr 17, 2024risk 0.00cvss —epss 0.02
Tenda W30E v1.0 V1.0.1.25(633) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.
- CVE-2024-32306Apr 17, 2024risk 0.00cvss —epss 0.00
Tenda AC10U v1.0 Firmware v15.03.06.49 has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.
- CVE-2024-32299Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function.
- CVE-2024-32311Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.
- CVE-2024-32316Apr 17, 2024risk 0.00cvss —epss 0.00
Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability in the fromDhcpListClient function.
- CVE-2024-32282Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.
- CVE-2023-46060Apr 17, 2024risk 0.00cvss —epss 0.01
A Buffer Overflow vulnerability in Tenda AC500 v.2.0.1.9 allows a remote attacker to cause a denial of service via the port parameter at the goform/setVlanInfo component.
- CVE-2024-32314Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda AC500 V2.0.1.9(1307) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.
- CVE-2024-32320Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the timeZone parameter in the formSetTimeZone function.
- CVE-2024-32281Apr 17, 2024risk 0.00cvss —epss 0.02
Tenda AC7V1.0 v15.03.06.44 firmware contains a command injection vulnerablility in formexeCommand function via the cmdinput parameter.
- CVE-2024-32310Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability located in the PPW parameter of the fromWizardHandle function.
- CVE-2024-32287Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the qos parameter in the fromqossetting function.
- CVE-2024-32286Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page parameter in the fromVirtualSer function.
- CVE-2024-32302Apr 17, 2024risk 0.00cvss —epss 0.00
Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function.
- CVE-2024-32293Apr 17, 2024risk 0.00cvss —epss 0.06
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromDhcpListClient function.
- CVE-2024-32305Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda A18 v15.03.05.05 firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.
- CVE-2024-32301Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda AC7V1.0 v15.03.06.44 firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function.
- CVE-2024-32317Apr 17, 2024risk 0.00cvss —epss 0.00
Tenda AC10 v4.0 V16.03.10.13 and V16.03.10.20 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.
- CVE-2024-32312Apr 17, 2024risk 0.00cvss —epss 0.00
Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability located in the adslPwd parameter of the formWanParameterSetting function.
- CVE-2024-32318Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the vlan parameter in the formSetVlanInfo function.
- CVE-2024-32285Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the password parameter in the formaddUserName function.
- CVE-2024-32291Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda W30E v1.0 firmware v1.0.1.25(633) has a stack overflow vulnerability via the page parameter in the fromNatlimit function.
- CVE-2024-32307Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.
- CVE-2024-32315Apr 17, 2024risk 0.00cvss —epss 0.00
Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.
- CVE-2024-32283Apr 17, 2024risk 0.00cvss —epss 0.01
Tenda FH1203 V2.0.1.6 firmware has a command injection vulnerablility in formexeCommand function via the cmdinput parameter.
- CVE-2024-3882Apr 16, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in Tenda W30E 1.0.1.25(633). It has been classified as critical. Affected is the function fromRouteStatic of the file /goform/fromRouteStatic. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the…
- CVE-2024-3881Apr 16, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in Tenda W30E 1.0.1.25(633) and classified as critical. This issue affects the function frmL7PlotForm of the file /goform/frmL7ProtForm. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely.…
- CVE-2024-3880Apr 16, 2024risk 0.00cvss —epss 0.04
A vulnerability has been found in Tenda W30E 1.0.1.25(633) and classified as critical. This vulnerability affects the function formWriteFacMac of the file /goform/WriteFacMac. The manipulation of the argument mac leads to os command injection. The attack can be initiated…
- CVE-2024-3879Apr 16, 2024risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, was found in Tenda W30E 1.0.1.25(633). This affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack…
- CVE-2024-3878Apr 16, 2024risk 0.00cvss —epss 0.02
A vulnerability, which was classified as critical, has been found in Tenda F1202 1.2.0.20(408). Affected by this issue is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. The manipulation of the argument page leads to stack-based buffer overflow.…
- CVE-2024-3877Apr 16, 2024risk 0.00cvss —epss 0.02
A vulnerability classified as critical was found in Tenda F1202 1.2.0.20(408). Affected by this vulnerability is the function fromqossetting of the file /goform/fromqossetting. The manipulation of the argument qos leads to stack-based buffer overflow. The attack can be launched…
Page 23 of 41