Vendor CVEs
Tenda
All CVEs
2,034 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-51960 | 0.00 | — | 0.01 | Jan 10, 2024 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function formGetIptv. | |||
| CVE-2023-51972 | 0.00 | — | 0.02 | Jan 10, 2024 | Tenda AX1803 v1.0.0.1 was discovered to contain a command injection vulnerability via the function fromAdvSetLanIp. | |||
| CVE-2023-51969 | 0.00 | — | 0.01 | Jan 10, 2024 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function getIptvInfo. | |||
| CVE-2023-51971 | 0.00 | — | 0.01 | Jan 10, 2024 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function getIptvInfo. | |||
| CVE-2023-51955 | 0.00 | — | 0.00 | Jan 10, 2024 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function formSetIptv. | |||
| CVE-2023-50585 | 0.00 | — | 0.01 | Jan 9, 2024 | Tenda A18 v15.13.07.09 was discovered to contain a stack overflow via the devName parameter in the formSetDeviceName function. | |||
| CVE-2023-51812 | 0.00 | — | 0.01 | Jan 4, 2024 | Tenda AX3 v16.03.12.11 was discovered to contain a remote code execution (RCE) vulnerability via the list parameter at /goform/SetNetControlList. | |||
| CVE-2023-51094 | 0.00 | — | 0.01 | Dec 26, 2023 | Tenda M3 V1.0.0.12(4856) was discovered to contain a Command Execution vulnerability via the function TendaTelnet. | |||
| CVE-2023-51097 | 0.00 | — | 0.01 | Dec 26, 2023 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formSetAutoPing. | |||
| CVE-2023-51095 | 0.00 | — | 0.01 | Dec 26, 2023 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formDelWlRfPolicy. | |||
| CVE-2023-51099 | 0.00 | — | 0.02 | Dec 26, 2023 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formexeCommand . | |||
| CVE-2023-51100 | 0.00 | — | 0.02 | Dec 26, 2023 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formGetDiagnoseInfo . | |||
| CVE-2023-51093 | 0.00 | — | 0.01 | Dec 26, 2023 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function fromSetLocalVlanInfo. | |||
| CVE-2023-51102 | 0.00 | — | 0.01 | Dec 26, 2023 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formWifiMacFilterSet. | |||
| CVE-2023-51101 | 0.00 | — | 0.01 | Dec 26, 2023 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formSetUplinkInfo. | |||
| CVE-2023-51090 | 0.00 | — | 0.01 | Dec 26, 2023 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formGetWeiXinConfig. | |||
| CVE-2023-51098 | 0.00 | — | 0.02 | Dec 26, 2023 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formSetDiagnoseInfo . | |||
| CVE-2023-50986 | 0.00 | — | 0.01 | Dec 20, 2023 | Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the time parameter in the sysLogin function. | |||
| CVE-2023-50990 | 0.00 | — | 0.01 | Dec 20, 2023 | Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the rebootTime parameter in the sysScheduleRebootSet function. | |||
| CVE-2023-50987 | 0.00 | — | 0.01 | Dec 20, 2023 | Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the time parameter in the sysTimeInfoSet function. | |||
| CVE-2023-50985 | 0.00 | — | 0.01 | Dec 20, 2023 | Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the lanGw parameter in the lanCfgSet function. | |||
| CVE-2023-50984 | 0.00 | — | 0.01 | Dec 20, 2023 | Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the ip parameter in the spdtstConfigAndStart function. | |||
| CVE-2023-50983 | 0.00 | — | 0.02 | Dec 20, 2023 | Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the sysScheduleRebootSet function. | |||
| CVE-2023-50988 | 0.00 | — | 0.01 | Dec 20, 2023 | Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the bandwidth parameter in the wifiRadioSetIndoor function. | |||
| CVE-2023-50989 | 0.00 | — | 0.02 | Dec 20, 2023 | Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the pingSet function. | |||
| CVE-2023-50992 | 0.00 | — | 0.01 | Dec 20, 2023 | Tenda i29 v1.0 V1.0.0.5 was discovered to contain a stack overflow via the ip parameter in the setPing function. | |||
| CVE-2023-50002 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formRebootMeshNode. | |||
| CVE-2023-49402 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function localMsg. | |||
| CVE-2023-49428 | 0.00 | — | 0.03 | Dec 7, 2023 | Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName. | |||
| CVE-2023-49405 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function UploadCfg. | |||
| CVE-2023-49435 | 0.00 | — | 0.02 | Dec 7, 2023 | Tenda AX9 V22.03.01.46 is vulnerable to command injection. | |||
| CVE-2023-49410 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function via the function set_wan_status. | |||
| CVE-2023-49424 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the list parameter at /goform/SetVirtualServerCfg. | |||
| CVE-2023-49431 | 0.00 | — | 0.02 | Dec 7, 2023 | Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName. | |||
| CVE-2023-49409 | 0.00 | — | 0.02 | Dec 7, 2023 | Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution vulnerability via the function /goform/telnet. | |||
| CVE-2023-49406 | 0.00 | — | 0.02 | Dec 7, 2023 | Tenda W30E V16.01.0.12(4843) was discovered to contain a Command Execution vulnerability via the function /goform/telnet. | |||
| CVE-2023-49408 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the function set_device_name. | |||
| CVE-2023-49403 | 0.00 | — | 0.02 | Dec 7, 2023 | Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability via the function setFixTools. | |||
| CVE-2023-49425 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the deviceList parameter at /goform/setMacFilterCfg . | |||
| CVE-2023-50001 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formUpgradeMeshOnline. | |||
| CVE-2023-49426 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the list parameter at /goform/SetStaticRouteCfg. | |||
| CVE-2023-49430 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetStaticRouteCfg. | |||
| CVE-2023-49437 | 0.00 | — | 0.02 | Dec 7, 2023 | Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'list' parameter at /goform/SetNetControlList. | |||
| CVE-2023-49999 | 0.00 | — | 0.02 | Dec 7, 2023 | Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability via the function setUmountUSBPartition. | |||
| CVE-2023-49434 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetNetControlList. | |||
| CVE-2023-49429 | 0.00 | — | 0.02 | Dec 7, 2023 | Tenda AX9 V22.03.01.46 was discovered to contain a SQL command injection vulnerability in the 'setDeviceInfo' feature through the 'mac' parameter at /goform/setModules. | |||
| CVE-2023-49433 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetVirtualServerCfg. | |||
| CVE-2023-49432 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'deviceList' parameter at /goform/setMacFilterCfg. | |||
| CVE-2023-49404 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formAdvancedSetListSet. | |||
| CVE-2023-50000 | 0.00 | — | 0.01 | Dec 7, 2023 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formResetMeshNode. |
- CVE-2023-51960Jan 10, 2024risk 0.00cvss —epss 0.01
Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function formGetIptv.
- CVE-2023-51972Jan 10, 2024risk 0.00cvss —epss 0.02
Tenda AX1803 v1.0.0.1 was discovered to contain a command injection vulnerability via the function fromAdvSetLanIp.
- CVE-2023-51969Jan 10, 2024risk 0.00cvss —epss 0.01
Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function getIptvInfo.
- CVE-2023-51971Jan 10, 2024risk 0.00cvss —epss 0.01
Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function getIptvInfo.
- CVE-2023-51955Jan 10, 2024risk 0.00cvss —epss 0.00
Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function formSetIptv.
- CVE-2023-50585Jan 9, 2024risk 0.00cvss —epss 0.01
Tenda A18 v15.13.07.09 was discovered to contain a stack overflow via the devName parameter in the formSetDeviceName function.
- CVE-2023-51812Jan 4, 2024risk 0.00cvss —epss 0.01
Tenda AX3 v16.03.12.11 was discovered to contain a remote code execution (RCE) vulnerability via the list parameter at /goform/SetNetControlList.
- CVE-2023-51094Dec 26, 2023risk 0.00cvss —epss 0.01
Tenda M3 V1.0.0.12(4856) was discovered to contain a Command Execution vulnerability via the function TendaTelnet.
- CVE-2023-51097Dec 26, 2023risk 0.00cvss —epss 0.01
Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formSetAutoPing.
- CVE-2023-51095Dec 26, 2023risk 0.00cvss —epss 0.01
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formDelWlRfPolicy.
- CVE-2023-51099Dec 26, 2023risk 0.00cvss —epss 0.02
Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formexeCommand .
- CVE-2023-51100Dec 26, 2023risk 0.00cvss —epss 0.02
Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formGetDiagnoseInfo .
- CVE-2023-51093Dec 26, 2023risk 0.00cvss —epss 0.01
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function fromSetLocalVlanInfo.
- CVE-2023-51102Dec 26, 2023risk 0.00cvss —epss 0.01
Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formWifiMacFilterSet.
- CVE-2023-51101Dec 26, 2023risk 0.00cvss —epss 0.01
Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formSetUplinkInfo.
- CVE-2023-51090Dec 26, 2023risk 0.00cvss —epss 0.01
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formGetWeiXinConfig.
- CVE-2023-51098Dec 26, 2023risk 0.00cvss —epss 0.02
Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formSetDiagnoseInfo .
- CVE-2023-50986Dec 20, 2023risk 0.00cvss —epss 0.01
Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the time parameter in the sysLogin function.
- CVE-2023-50990Dec 20, 2023risk 0.00cvss —epss 0.01
Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the rebootTime parameter in the sysScheduleRebootSet function.
- CVE-2023-50987Dec 20, 2023risk 0.00cvss —epss 0.01
Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the time parameter in the sysTimeInfoSet function.
- CVE-2023-50985Dec 20, 2023risk 0.00cvss —epss 0.01
Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the lanGw parameter in the lanCfgSet function.
- CVE-2023-50984Dec 20, 2023risk 0.00cvss —epss 0.01
Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the ip parameter in the spdtstConfigAndStart function.
- CVE-2023-50983Dec 20, 2023risk 0.00cvss —epss 0.02
Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the sysScheduleRebootSet function.
- CVE-2023-50988Dec 20, 2023risk 0.00cvss —epss 0.01
Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the bandwidth parameter in the wifiRadioSetIndoor function.
- CVE-2023-50989Dec 20, 2023risk 0.00cvss —epss 0.02
Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the pingSet function.
- CVE-2023-50992Dec 20, 2023risk 0.00cvss —epss 0.01
Tenda i29 v1.0 V1.0.0.5 was discovered to contain a stack overflow via the ip parameter in the setPing function.
- CVE-2023-50002Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formRebootMeshNode.
- CVE-2023-49402Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function localMsg.
- CVE-2023-49428Dec 7, 2023risk 0.00cvss —epss 0.03
Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName.
- CVE-2023-49405Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function UploadCfg.
- CVE-2023-49435Dec 7, 2023risk 0.00cvss —epss 0.02
Tenda AX9 V22.03.01.46 is vulnerable to command injection.
- CVE-2023-49410Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function via the function set_wan_status.
- CVE-2023-49424Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the list parameter at /goform/SetVirtualServerCfg.
- CVE-2023-49431Dec 7, 2023risk 0.00cvss —epss 0.02
Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName.
- CVE-2023-49409Dec 7, 2023risk 0.00cvss —epss 0.02
Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution vulnerability via the function /goform/telnet.
- CVE-2023-49406Dec 7, 2023risk 0.00cvss —epss 0.02
Tenda W30E V16.01.0.12(4843) was discovered to contain a Command Execution vulnerability via the function /goform/telnet.
- CVE-2023-49408Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the function set_device_name.
- CVE-2023-49403Dec 7, 2023risk 0.00cvss —epss 0.02
Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability via the function setFixTools.
- CVE-2023-49425Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the deviceList parameter at /goform/setMacFilterCfg .
- CVE-2023-50001Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formUpgradeMeshOnline.
- CVE-2023-49426Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the list parameter at /goform/SetStaticRouteCfg.
- CVE-2023-49430Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetStaticRouteCfg.
- CVE-2023-49437Dec 7, 2023risk 0.00cvss —epss 0.02
Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'list' parameter at /goform/SetNetControlList.
- CVE-2023-49999Dec 7, 2023risk 0.00cvss —epss 0.02
Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability via the function setUmountUSBPartition.
- CVE-2023-49434Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetNetControlList.
- CVE-2023-49429Dec 7, 2023risk 0.00cvss —epss 0.02
Tenda AX9 V22.03.01.46 was discovered to contain a SQL command injection vulnerability in the 'setDeviceInfo' feature through the 'mac' parameter at /goform/setModules.
- CVE-2023-49433Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetVirtualServerCfg.
- CVE-2023-49432Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'deviceList' parameter at /goform/setMacFilterCfg.
- CVE-2023-49404Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formAdvancedSetListSet.
- CVE-2023-50000Dec 7, 2023risk 0.00cvss —epss 0.01
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formResetMeshNode.
Page 28 of 41