VYPR

Vendor CVEs

Tenda

All CVEs

2,034 total · sorted by risk
  • CVE-2023-51960Jan 10, 2024
    risk 0.00cvss epss 0.01

    Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function formGetIptv.

  • CVE-2023-51972Jan 10, 2024
    risk 0.00cvss epss 0.02

    Tenda AX1803 v1.0.0.1 was discovered to contain a command injection vulnerability via the function fromAdvSetLanIp.

  • CVE-2023-51969Jan 10, 2024
    risk 0.00cvss epss 0.01

    Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function getIptvInfo.

  • CVE-2023-51971Jan 10, 2024
    risk 0.00cvss epss 0.01

    Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function getIptvInfo.

  • CVE-2023-51955Jan 10, 2024
    risk 0.00cvss epss 0.00

    Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function formSetIptv.

  • CVE-2023-50585Jan 9, 2024
    risk 0.00cvss epss 0.01

    Tenda A18 v15.13.07.09 was discovered to contain a stack overflow via the devName parameter in the formSetDeviceName function.

  • CVE-2023-51812Jan 4, 2024
    risk 0.00cvss epss 0.01

    Tenda AX3 v16.03.12.11 was discovered to contain a remote code execution (RCE) vulnerability via the list parameter at /goform/SetNetControlList.

  • CVE-2023-51094Dec 26, 2023
    risk 0.00cvss epss 0.01

    Tenda M3 V1.0.0.12(4856) was discovered to contain a Command Execution vulnerability via the function TendaTelnet.

  • CVE-2023-51097Dec 26, 2023
    risk 0.00cvss epss 0.01

    Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formSetAutoPing.

  • CVE-2023-51095Dec 26, 2023
    risk 0.00cvss epss 0.01

    Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formDelWlRfPolicy.

  • CVE-2023-51099Dec 26, 2023
    risk 0.00cvss epss 0.02

    Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formexeCommand .

  • CVE-2023-51100Dec 26, 2023
    risk 0.00cvss epss 0.02

    Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formGetDiagnoseInfo .

  • CVE-2023-51093Dec 26, 2023
    risk 0.00cvss epss 0.01

    Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function fromSetLocalVlanInfo.

  • CVE-2023-51102Dec 26, 2023
    risk 0.00cvss epss 0.01

    Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formWifiMacFilterSet.

  • CVE-2023-51101Dec 26, 2023
    risk 0.00cvss epss 0.01

    Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formSetUplinkInfo.

  • CVE-2023-51090Dec 26, 2023
    risk 0.00cvss epss 0.01

    Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formGetWeiXinConfig.

  • CVE-2023-51098Dec 26, 2023
    risk 0.00cvss epss 0.02

    Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formSetDiagnoseInfo .

  • CVE-2023-50986Dec 20, 2023
    risk 0.00cvss epss 0.01

    Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the time parameter in the sysLogin function.

  • CVE-2023-50990Dec 20, 2023
    risk 0.00cvss epss 0.01

    Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the rebootTime parameter in the sysScheduleRebootSet function.

  • CVE-2023-50987Dec 20, 2023
    risk 0.00cvss epss 0.01

    Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the time parameter in the sysTimeInfoSet function.

  • CVE-2023-50985Dec 20, 2023
    risk 0.00cvss epss 0.01

    Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the lanGw parameter in the lanCfgSet function.

  • CVE-2023-50984Dec 20, 2023
    risk 0.00cvss epss 0.01

    Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the ip parameter in the spdtstConfigAndStart function.

  • CVE-2023-50983Dec 20, 2023
    risk 0.00cvss epss 0.02

    Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the sysScheduleRebootSet function.

  • CVE-2023-50988Dec 20, 2023
    risk 0.00cvss epss 0.01

    Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the bandwidth parameter in the wifiRadioSetIndoor function.

  • CVE-2023-50989Dec 20, 2023
    risk 0.00cvss epss 0.02

    Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the pingSet function.

  • CVE-2023-50992Dec 20, 2023
    risk 0.00cvss epss 0.01

    Tenda i29 v1.0 V1.0.0.5 was discovered to contain a stack overflow via the ip parameter in the setPing function.

  • CVE-2023-50002Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formRebootMeshNode.

  • CVE-2023-49402Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function localMsg.

  • CVE-2023-49428Dec 7, 2023
    risk 0.00cvss epss 0.03

    Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName.

  • CVE-2023-49405Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function UploadCfg.

  • CVE-2023-49435Dec 7, 2023
    risk 0.00cvss epss 0.02

    Tenda AX9 V22.03.01.46 is vulnerable to command injection.

  • CVE-2023-49410Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function via the function set_wan_status.

  • CVE-2023-49424Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the list parameter at /goform/SetVirtualServerCfg.

  • CVE-2023-49431Dec 7, 2023
    risk 0.00cvss epss 0.02

    Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName.

  • CVE-2023-49409Dec 7, 2023
    risk 0.00cvss epss 0.02

    Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution vulnerability via the function /goform/telnet.

  • CVE-2023-49406Dec 7, 2023
    risk 0.00cvss epss 0.02

    Tenda W30E V16.01.0.12(4843) was discovered to contain a Command Execution vulnerability via the function /goform/telnet.

  • CVE-2023-49408Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the function set_device_name.

  • CVE-2023-49403Dec 7, 2023
    risk 0.00cvss epss 0.02

    Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability via the function setFixTools.

  • CVE-2023-49425Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the deviceList parameter at /goform/setMacFilterCfg .

  • CVE-2023-50001Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formUpgradeMeshOnline.

  • CVE-2023-49426Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the list parameter at /goform/SetStaticRouteCfg.

  • CVE-2023-49430Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetStaticRouteCfg.

  • CVE-2023-49437Dec 7, 2023
    risk 0.00cvss epss 0.02

    Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'list' parameter at /goform/SetNetControlList.

  • CVE-2023-49999Dec 7, 2023
    risk 0.00cvss epss 0.02

    Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability via the function setUmountUSBPartition.

  • CVE-2023-49434Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetNetControlList.

  • CVE-2023-49429Dec 7, 2023
    risk 0.00cvss epss 0.02

    Tenda AX9 V22.03.01.46 was discovered to contain a SQL command injection vulnerability in the 'setDeviceInfo' feature through the 'mac' parameter at /goform/setModules.

  • CVE-2023-49433Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetVirtualServerCfg.

  • CVE-2023-49432Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'deviceList' parameter at /goform/setMacFilterCfg.

  • CVE-2023-49404Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formAdvancedSetListSet.

  • CVE-2023-50000Dec 7, 2023
    risk 0.00cvss epss 0.01

    Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formResetMeshNode.

Page 28 of 41