VYPR

Vendor CVEs

Tenda

All CVEs

2,034 total · sorted by risk
  • CVE-2022-43026Oct 19, 2022
    risk 0.00cvss epss 0.01

    Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the endIp parameter at /goform/SetPptpServerCfg.

  • CVE-2022-43260Oct 18, 2022
    risk 0.00cvss epss 0.01

    Tenda AC18 V15.03.05.19(6318) was discovered to contain a stack overflow via the time parameter in the fromSetSysTime function.

  • CVE-2022-43259Oct 18, 2022
    risk 0.00cvss epss 0.01

    Tenda AC15 V15.03.05.18 was discovered to contain a stack overflow via the timeZone parameter in the form_fast_setting_wifi_set function.

  • CVE-2022-42167Oct 17, 2022
    risk 0.00cvss epss 0.01

    Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formSetFirewallCfg.

  • CVE-2022-42171Oct 17, 2022
    risk 0.00cvss epss 0.01

    Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/saveParentControlInfo.

  • CVE-2022-42166Oct 17, 2022
    risk 0.00cvss epss 0.01

    Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formSetSpeedWan.

  • CVE-2022-42163Oct 17, 2022
    risk 0.00cvss epss 0.01

    Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/fromNatStaticSetting.

  • CVE-2022-42168Oct 17, 2022
    risk 0.00cvss epss 0.01

    Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/fromSetIpMacBind.

  • CVE-2022-42169Oct 17, 2022
    risk 0.00cvss epss 0.01

    Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/addWifiMacFilter.

  • CVE-2022-42164Oct 17, 2022
    risk 0.00cvss epss 0.01

    Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formSetClientState.

  • CVE-2022-42165Oct 17, 2022
    risk 0.00cvss epss 0.01

    Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formSetDeviceName.

  • CVE-2022-42170Oct 17, 2022
    risk 0.00cvss epss 0.01

    Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formWifiWpsStart.

  • CVE-2022-41485Oct 13, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1200 US_AC6V2.0RTL_V15.03.06.51_multi_TDE01 was discovered to contain a buffer overflow in the 0x47ce00 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.

  • CVE-2022-41481Oct 13, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1200 US_AC6V2.0RTL_V15.03.06.51_multi_TDE01 was discovered to contain a buffer overflow in the 0x47de1c function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.

  • CVE-2022-41483Oct 13, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1200 US_AC6V2.0RTL_V15.03.06.51_multi_TDE01 was discovered to contain a buffer overflow in the 0x4a12cc function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.

  • CVE-2022-41480Oct 13, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1200 US_AC6V2.0RTL_V15.03.06.51_multi_TDE01 was discovered to contain a buffer overflow in the 0x475dc function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.

  • CVE-2022-41482Oct 13, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1200 US_AC6V2.0RTL_V15.03.06.51_multi_TDE01 was discovered to contain a buffer overflow in the 0x47c5dc function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.

  • CVE-2022-42077Oct 12, 2022
    risk 0.00cvss epss 0.00

    Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.

  • CVE-2022-42086Oct 12, 2022
    risk 0.00cvss epss 0.00

    Tenda AX1803 US_AX1803v2.0br_v1.0.0.1_2994_CN_ZGYD01_4 is vulnerable to Cross Site Request Forgery (CSRF) via function TendaAteMode.

  • CVE-2022-42079Oct 12, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 was discovered to contain a stack overflow via the function formWifiBasicSet.

  • CVE-2022-42078Oct 12, 2022
    risk 0.00cvss epss 0.00

    Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolRestoreSet.

  • CVE-2022-42081Oct 12, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 was discovered to contain a stack overflow via sched_end_time parameter.

  • CVE-2022-42087Oct 12, 2022
    risk 0.00cvss epss 0.00

    Tenda AX1803 US_AX1803v2.0br_v1.0.0.1_2994_CN_ZGYD01_4 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.

  • CVE-2022-42080Oct 12, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 was discovered to contain a heap overflow via sched_start_time parameter.

  • CVE-2022-40942Sep 28, 2022
    risk 0.00cvss epss 0.08

    Tenda TX3 US_TX3V1.0br_V16.03.13.11 is vulnerable to stack overflow via compare_parentcontrol_time.

  • CVE-2022-40106Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the set_local_time function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

  • CVE-2022-40107Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formexeCommand function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

  • CVE-2022-40105Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formWifiMacFilterGet function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

  • CVE-2022-40104Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formwrlSSIDget function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

  • CVE-2022-40102Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formwrlSSIDset function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

  • CVE-2022-40103Sep 23, 2022
    risk 0.00cvss epss 0.00

    Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formSetAutoPing function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

  • CVE-2022-40101Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formWifiMacFilterSet function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

  • CVE-2022-40100Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda i9 v1.0.0.8(3828) was discovered to contain a command injection vulnerability via the FormexeCommand function.

  • CVE-2022-40861Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda AC18 router V15.03.05.19 contains a stack overflow vulnerability in the formSetQosBand->FUN_0007db78 function with the request /goform/SetNetControlList/

  • CVE-2022-40855Sep 23, 2022
    risk 0.00cvss epss 0.14

    Tenda W20E router V15.11.0.6 contains a stack overflow in the function formSetPortMapping with post request 'goform/setPortMapping/'. This vulnerability allows attackers to cause a Denial of Service (DoS) or Remote Code Execution (RCE) via the portMappingServer,…

  • CVE-2022-40866Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formSetDebugCfg with request /goform/setDebugCfg/

  • CVE-2022-40867Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formIPMacBindDel with the request /goform/delIpMacBind/

  • CVE-2022-40868Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formDelDhcpRule with the request /goform/delDhcpRules/

  • CVE-2022-40854Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda AC18 router contained a stack overflow vulnerability in /goform/fast_setting_wifi_set

  • CVE-2022-40851Sep 23, 2022
    risk 0.00cvss epss 0.09

    Tenda AC15 V15.03.05.19 contained a stack overflow via the function fromAddressNat.

  • CVE-2022-40853Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda AC15 router V15.03.05.19 contains a stack overflow via the list parameter at /goform/fast_setting_wifi_set

  • CVE-2022-40860Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda AC15 router V15.03.05.19 contains a stack overflow vulnerability in the function formSetQosBand->FUN_0007dd20 with request /goform/SetNetControlList

  • CVE-2022-40862Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda AC15 and AC18 router V15.03.05.19 contains stack overflow vulnerability in the function fromNatStaticSetting with the request /goform/NatStaticSetting

  • CVE-2022-40864Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function setSmartPowerManagement with the request /goform/PowerSaveSet

  • CVE-2022-40865Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda AC15 and AC18 routers V15.03.05.19 contain heap overflow vulnerabilities in the function setSchedWifi with the request /goform/openSchedWifi/

  • CVE-2022-40869Sep 23, 2022
    risk 0.00cvss epss 0.01

    Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function fromDhcpListClient with a combined parameter "list*" ("%s%d","list").

  • CVE-2022-40067Sep 19, 2022
    risk 0.00cvss epss 0.01

    Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, function: formSetVirtualSer.

  • CVE-2022-40068Sep 19, 2022
    risk 0.00cvss epss 0.01

    Tenda AC21 V16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, function: formSetQosBand.

  • CVE-2022-40069Sep 19, 2022
    risk 0.00cvss epss 0.01

    ]Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, function: fromSetSysTime.

  • CVE-2022-40070Sep 19, 2022
    risk 0.00cvss epss 0.01

    Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via bin/httpd, function: formSetFirewallCfg.

Page 36 of 41