Vendor CVEs
Tenda
All CVEs
2,034 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-3876 | 0.00 | — | 0.02 | Apr 16, 2024 | A vulnerability classified as critical has been found in Tenda F1202 1.2.0.20(408). Affected is the function fromVirtualSer of the file /goform/VirtualSer. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the attack remotely.… | |||
| CVE-2024-3875 | 0.00 | — | 0.02 | Apr 16, 2024 | A vulnerability was found in Tenda F1202 1.2.0.20(408). It has been rated as critical. This issue affects the function fromNatlimit of the file /goform/Natlimit. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The… | |||
| CVE-2024-3874 | 0.00 | — | 0.01 | Apr 16, 2024 | A vulnerability was found in Tenda W20E 15.11.0.6. It has been declared as critical. This vulnerability affects the function formSetRemoteWebManage of the file /goform/SetRemoteWebManage. The manipulation of the argument remoteIP leads to stack-based buffer overflow. The attack… | |||
| CVE-2024-30840 | 0.00 | — | 0.00 | Apr 15, 2024 | A Stack Overflow vulnerability in Tenda AC15 v15.03.05.18 allows attackers to cause a denial of service via the LISTEN parameter in the fromDhcpListClient function. | |||
| CVE-2024-30891 | 0.00 | — | 0.02 | Apr 5, 2024 | A command injection vulnerability exists in /goform/exeCommand in Tenda AC18 v15.03.05.05, which allows attackers to construct cmdinput parameters for arbitrary command execution. | |||
| CVE-2024-30621 | 0.00 | — | 0.01 | Apr 2, 2024 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the serverName parameter in the function fromAdvSetMacMtuWan. | |||
| CVE-2024-30620 | 0.00 | — | 0.01 | Apr 2, 2024 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the serviceName parameter in the function fromAdvSetMacMtuWan. | |||
| CVE-2024-30627 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the deviceId parameter from saveParentControlInfo function. | |||
| CVE-2024-30622 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the mitInterface parameter from fromAddressNat function. | |||
| CVE-2024-30632 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the security_5g parameter from formWifiBasicSet function. | |||
| CVE-2024-30630 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the time parameter from saveParentControlInfo function. | |||
| CVE-2024-30635 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability located in the funcpara1 parameter in the formSetCfm function. | |||
| CVE-2024-30623 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the page parameter from fromDhcpListClient function. | |||
| CVE-2024-30639 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability in the page parameter of fromAddressNat function. | |||
| CVE-2024-30631 | 0.00 | — | 0.00 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the schedStartTime parameter from setSchedWifi function. | |||
| CVE-2024-30638 | 0.00 | — | 0.00 | Mar 29, 2024 | Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the entrys parameter in the fromAddressNat function. | |||
| CVE-2024-30628 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the page parameter from fromAddressNat function. | |||
| CVE-2024-30636 | 0.00 | — | 0.00 | Mar 29, 2024 | Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the PPPOEPassword parameter in the formQuickIndex function. | |||
| CVE-2024-30613 | 0.00 | — | 0.00 | Mar 29, 2024 | Tenda AC15 v15.03.05.18 has a stack overflow vulnerability in the time parameter from the setSmartPowerManagement function. | |||
| CVE-2024-30633 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the security parameter from the formWifiBasicSet function. | |||
| CVE-2024-30634 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the mitInterface parameter in the fromAddressNat function. | |||
| CVE-2024-30637 | 0.00 | — | 0.02 | Mar 29, 2024 | Tenda F1202 v1.2.0.20(408) has a command injection vulnerablility in the formWriteFacMac function in the mac parameter. | |||
| CVE-2024-30645 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda AC15V1.0 V15.03.20_multi has a command injection vulnerability via the deviceName parameter. | |||
| CVE-2024-30629 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the list1 parameter from fromDhcpListClient function. | |||
| CVE-2024-30625 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the entrys parameter from fromAddressNat function. | |||
| CVE-2024-30624 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the urls parameter from saveParentControlInfo function. | |||
| CVE-2024-30626 | 0.00 | — | 0.01 | Mar 29, 2024 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the schedEndTime parameter from setSchedWifi function. | |||
| CVE-2024-3012 | 0.00 | — | 0.02 | Mar 28, 2024 | A vulnerability was found in Tenda FH1205 2.0.0.7(775). It has been declared as critical. This vulnerability affects the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument mac leads to stack-based buffer overflow. The attack… | |||
| CVE-2024-3011 | 0.00 | — | 0.02 | Mar 28, 2024 | A vulnerability was found in Tenda FH1205 2.0.0.7(775). It has been classified as critical. This affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. It is possible to initiate… | |||
| CVE-2024-30603 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the urls parameter of the saveParentControlInfo function. | |||
| CVE-2024-30595 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the addWifiMacFilter function. | |||
| CVE-2024-30583 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the mitInterface parameter of the fromAddressNat function. | |||
| CVE-2024-30599 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the deviceMac parameter of the addWifiMacFilter function. | |||
| CVE-2024-30584 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security parameter of the formWifiBasicSet function. | |||
| CVE-2024-30597 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability in the security parameter of the formWifiBasicSet function. | |||
| CVE-2024-30586 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security_5g parameter of the formWifiBasicSet function. | |||
| CVE-2024-30596 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the formSetDeviceName function. | |||
| CVE-2024-30602 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedStartTime parameter of the setSchedWifi function. | |||
| CVE-2024-30592 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the page parameter of the fromAddressNat function. | |||
| CVE-2024-30600 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedEndTime parameter of the setSchedWifi function. | |||
| CVE-2024-30594 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceMac parameter of the addWifiMacFilter function. | |||
| CVE-2024-30590 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the schedEndTime parameter of the setSchedWifi function. | |||
| CVE-2024-30598 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability in the security_5g parameter of the formWifiBasicSet function. | |||
| CVE-2024-30585 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the saveParentControlInfo function. | |||
| CVE-2024-30606 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the page parameter of the fromDhcpListClient function. | |||
| CVE-2024-30593 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability located in the deviceName parameter of the formSetDeviceName function. | |||
| CVE-2024-30601 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the time parameter of the saveParentControlInfo function. | |||
| CVE-2024-30591 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the time parameter of the saveParentControlInfo function. | |||
| CVE-2024-30607 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the deviceId parameter of the saveParentControlInfo function. | |||
| CVE-2024-30587 | 0.00 | — | 0.01 | Mar 28, 2024 | Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the urls parameter of the saveParentControlInfo function. |
- CVE-2024-3876Apr 16, 2024risk 0.00cvss —epss 0.02
A vulnerability classified as critical has been found in Tenda F1202 1.2.0.20(408). Affected is the function fromVirtualSer of the file /goform/VirtualSer. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the attack remotely.…
- CVE-2024-3875Apr 16, 2024risk 0.00cvss —epss 0.02
A vulnerability was found in Tenda F1202 1.2.0.20(408). It has been rated as critical. This issue affects the function fromNatlimit of the file /goform/Natlimit. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The…
- CVE-2024-3874Apr 16, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in Tenda W20E 15.11.0.6. It has been declared as critical. This vulnerability affects the function formSetRemoteWebManage of the file /goform/SetRemoteWebManage. The manipulation of the argument remoteIP leads to stack-based buffer overflow. The attack…
- CVE-2024-30840Apr 15, 2024risk 0.00cvss —epss 0.00
A Stack Overflow vulnerability in Tenda AC15 v15.03.05.18 allows attackers to cause a denial of service via the LISTEN parameter in the fromDhcpListClient function.
- CVE-2024-30891Apr 5, 2024risk 0.00cvss —epss 0.02
A command injection vulnerability exists in /goform/exeCommand in Tenda AC18 v15.03.05.05, which allows attackers to construct cmdinput parameters for arbitrary command execution.
- CVE-2024-30621Apr 2, 2024risk 0.00cvss —epss 0.01
Tenda AX1803 v1.0.0.1 contains a stack overflow via the serverName parameter in the function fromAdvSetMacMtuWan.
- CVE-2024-30620Apr 2, 2024risk 0.00cvss —epss 0.01
Tenda AX1803 v1.0.0.1 contains a stack overflow via the serviceName parameter in the function fromAdvSetMacMtuWan.
- CVE-2024-30627Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the deviceId parameter from saveParentControlInfo function.
- CVE-2024-30622Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the mitInterface parameter from fromAddressNat function.
- CVE-2024-30632Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the security_5g parameter from formWifiBasicSet function.
- CVE-2024-30630Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the time parameter from saveParentControlInfo function.
- CVE-2024-30635Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability located in the funcpara1 parameter in the formSetCfm function.
- CVE-2024-30623Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the page parameter from fromDhcpListClient function.
- CVE-2024-30639Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability in the page parameter of fromAddressNat function.
- CVE-2024-30631Mar 29, 2024risk 0.00cvss —epss 0.00
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the schedStartTime parameter from setSchedWifi function.
- CVE-2024-30638Mar 29, 2024risk 0.00cvss —epss 0.00
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the entrys parameter in the fromAddressNat function.
- CVE-2024-30628Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the page parameter from fromAddressNat function.
- CVE-2024-30636Mar 29, 2024risk 0.00cvss —epss 0.00
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the PPPOEPassword parameter in the formQuickIndex function.
- CVE-2024-30613Mar 29, 2024risk 0.00cvss —epss 0.00
Tenda AC15 v15.03.05.18 has a stack overflow vulnerability in the time parameter from the setSmartPowerManagement function.
- CVE-2024-30633Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the security parameter from the formWifiBasicSet function.
- CVE-2024-30634Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the mitInterface parameter in the fromAddressNat function.
- CVE-2024-30637Mar 29, 2024risk 0.00cvss —epss 0.02
Tenda F1202 v1.2.0.20(408) has a command injection vulnerablility in the formWriteFacMac function in the mac parameter.
- CVE-2024-30645Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda AC15V1.0 V15.03.20_multi has a command injection vulnerability via the deviceName parameter.
- CVE-2024-30629Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the list1 parameter from fromDhcpListClient function.
- CVE-2024-30625Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the entrys parameter from fromAddressNat function.
- CVE-2024-30624Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the urls parameter from saveParentControlInfo function.
- CVE-2024-30626Mar 29, 2024risk 0.00cvss —epss 0.01
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the schedEndTime parameter from setSchedWifi function.
- CVE-2024-3012Mar 28, 2024risk 0.00cvss —epss 0.02
A vulnerability was found in Tenda FH1205 2.0.0.7(775). It has been declared as critical. This vulnerability affects the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument mac leads to stack-based buffer overflow. The attack…
- CVE-2024-3011Mar 28, 2024risk 0.00cvss —epss 0.02
A vulnerability was found in Tenda FH1205 2.0.0.7(775). It has been classified as critical. This affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. It is possible to initiate…
- CVE-2024-30603Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the urls parameter of the saveParentControlInfo function.
- CVE-2024-30595Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the addWifiMacFilter function.
- CVE-2024-30583Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the mitInterface parameter of the fromAddressNat function.
- CVE-2024-30599Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the deviceMac parameter of the addWifiMacFilter function.
- CVE-2024-30584Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security parameter of the formWifiBasicSet function.
- CVE-2024-30597Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability in the security parameter of the formWifiBasicSet function.
- CVE-2024-30586Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security_5g parameter of the formWifiBasicSet function.
- CVE-2024-30596Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the formSetDeviceName function.
- CVE-2024-30602Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedStartTime parameter of the setSchedWifi function.
- CVE-2024-30592Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the page parameter of the fromAddressNat function.
- CVE-2024-30600Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedEndTime parameter of the setSchedWifi function.
- CVE-2024-30594Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceMac parameter of the addWifiMacFilter function.
- CVE-2024-30590Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the schedEndTime parameter of the setSchedWifi function.
- CVE-2024-30598Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability in the security_5g parameter of the formWifiBasicSet function.
- CVE-2024-30585Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the saveParentControlInfo function.
- CVE-2024-30606Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the page parameter of the fromDhcpListClient function.
- CVE-2024-30593Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability located in the deviceName parameter of the formSetDeviceName function.
- CVE-2024-30601Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the time parameter of the saveParentControlInfo function.
- CVE-2024-30591Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the time parameter of the saveParentControlInfo function.
- CVE-2024-30607Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the deviceId parameter of the saveParentControlInfo function.
- CVE-2024-30587Mar 28, 2024risk 0.00cvss —epss 0.01
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the urls parameter of the saveParentControlInfo function.
Page 24 of 41