Vendor CVEs
Tenda
All CVEs
2,034 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-37806 | 0.00 | — | 0.01 | Aug 25, 2022 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromDhcpListClient. | |||
| CVE-2022-37805 | 0.00 | — | 0.01 | Aug 25, 2022 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromWizardHandle. | |||
| CVE-2022-37811 | 0.00 | — | 0.01 | Aug 25, 2022 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the startIp parameter in the function formSetPPTPServer. | |||
| CVE-2022-37812 | 0.00 | — | 0.01 | Aug 25, 2022 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the firewallEn parameter in the function formSetFirewallCfg. | |||
| CVE-2022-37803 | 0.00 | — | 0.01 | Aug 25, 2022 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromAddressNat. | |||
| CVE-2022-37801 | 0.00 | — | 0.01 | Aug 25, 2022 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function formSetQosBand. | |||
| CVE-2022-37800 | 0.00 | — | 0.01 | Aug 25, 2022 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function fromSetRouteStatic. | |||
| CVE-2022-37804 | 0.00 | — | 0.01 | Aug 25, 2022 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter in the function saveParentControlInfo. | |||
| CVE-2022-37802 | 0.00 | — | 0.01 | Aug 25, 2022 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromNatStaticSetting. | |||
| CVE-2022-37799 | 0.00 | — | 0.01 | Aug 25, 2022 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter at the function setSmartPowerManagement. | |||
| CVE-2022-37798 | 0.00 | — | 0.01 | Aug 25, 2022 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function formSetVirtualSer. | |||
| CVE-2022-36233 | 0.00 | — | 0.00 | Aug 19, 2022 | Tenda AC9 V15.03.2.13 is vulnerable to Buffer Overflow via httpd, form_fast_setting_wifi_set. httpd. | |||
| CVE-2022-37175 | 0.00 | — | 0.01 | Aug 19, 2022 | Tenda ac15 firmware V15.03.05.18 httpd server has stack buffer overflow in /goform/formWifiBasicSet. | |||
| CVE-2022-35201 | 0.00 | — | 0.02 | Aug 19, 2022 | Tenda-AC18 V15.03.05.05 was discovered to contain a remote command execution (RCE) vulnerability. | |||
| CVE-2022-35561 | 0.00 | — | 0.01 | Aug 11, 2022 | A stack overflow vulnerability exists in /goform/WifiMacFilterSet in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter. | |||
| CVE-2022-35560 | 0.00 | — | 0.01 | Aug 11, 2022 | A stack overflow vulnerability exists in /goform/wifiSSIDset in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter. | |||
| CVE-2022-35559 | 0.00 | — | 0.11 | Aug 11, 2022 | A stack overflow vulnerability exists in /goform/setAutoPing in Tenda W6 V1.0.0.9(4122), which allows an attacker to construct ping1 parameters and ping2 parameters for a stack overflow attack. An attacker can use this vulnerability to execute arbitrary code execution. | |||
| CVE-2022-35558 | 0.00 | — | 0.01 | Aug 11, 2022 | A stack overflow vulnerability exists in /goform/WifiMacFilterGet in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter. | |||
| CVE-2022-35557 | 0.00 | — | 0.01 | Aug 11, 2022 | A stack overflow vulnerability exists in /goform/wifiSSIDget in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter. | |||
| CVE-2022-34597 | 0.00 | — | 0.03 | Jul 6, 2022 | Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability via the function WanParameterSetting. | |||
| CVE-2022-32383 | 0.00 | — | 0.01 | Jul 6, 2022 | Tenda AC23 v16.03.07.44 was discovered to contain a stack overflow via the AdvSetMacMtuWan function. | |||
| CVE-2022-32385 | 0.00 | — | 0.02 | Jul 6, 2022 | Tenda AC23 v16.03.07.44 is vulnerable to Stack Overflow that will allow for the execution of arbitrary code (remote). | |||
| CVE-2022-32386 | 0.00 | — | 0.11 | Jul 6, 2022 | Tenda AC23 v16.03.07.44 was discovered to contain a buffer overflow via fromAdvSetMacMtuWan. | |||
| CVE-2022-32384 | 0.00 | — | 0.01 | Jul 1, 2022 | Tenda AC23 v16.03.07.44 was discovered to contain a stack overflow via the security_5g parameter in the function formWifiBasicSet. | |||
| CVE-2022-32030 | 0.00 | — | 0.01 | Jul 1, 2022 | Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function formSetQosBand. | |||
| CVE-2022-32031 | 0.00 | — | 0.01 | Jul 1, 2022 | Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetRouteStatic. | |||
| CVE-2022-32032 | 0.00 | — | 0.09 | Jul 1, 2022 | Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the deviceList parameter in the function formAddMacfilterRule. | |||
| CVE-2022-32033 | 0.00 | — | 0.01 | Jul 1, 2022 | Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the function formSetVirtualSer. | |||
| CVE-2022-32034 | 0.00 | — | 0.01 | Jul 1, 2022 | Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the items parameter in the function formdelMasteraclist. | |||
| CVE-2022-32035 | 0.00 | — | 0.13 | Jul 1, 2022 | Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formMasterMng. | |||
| CVE-2022-32036 | 0.00 | — | 0.01 | Jul 1, 2022 | Tenda M3 V1.0.0.12 was discovered to contain multiple stack overflow vulnerabilities via the ssidList, storeName, and trademark parameters in the function formSetStoreWeb. | |||
| CVE-2022-32037 | 0.00 | — | 0.01 | Jul 1, 2022 | Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAPCfg. | |||
| CVE-2022-32039 | 0.00 | — | 0.01 | Jul 1, 2022 | Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the listN parameter in the function fromDhcpListClient. | |||
| CVE-2022-32040 | 0.00 | — | 0.01 | Jul 1, 2022 | Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetCfm. | |||
| CVE-2022-32041 | 0.00 | — | 0.01 | Jul 1, 2022 | Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formGetPassengerAnalyseData. | |||
| CVE-2022-32043 | 0.00 | — | 0.01 | Jul 1, 2022 | Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAccessCodeInfo. | |||
| CVE-2022-30477 | 0.00 | — | 0.01 | May 26, 2022 | Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/SetClientState request. | |||
| CVE-2022-30476 | 0.00 | — | 0.01 | May 26, 2022 | Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/SetFirewallCfg request. | |||
| CVE-2022-30475 | 0.00 | — | 0.01 | May 26, 2022 | Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/WifiExtraSet request. | |||
| CVE-2022-30474 | 0.00 | — | 0.01 | May 26, 2022 | Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a heap overflow in the httpd module when handling /goform/saveParentControlInfo request. | |||
| CVE-2022-30472 | 0.00 | — | 0.01 | May 26, 2022 | Tenda AC Seris Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function fromAddressNat | |||
| CVE-2022-30473 | 0.00 | — | 0.01 | May 26, 2022 | Tenda AC Series Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function form_fast_setting_wifi_set | |||
| CVE-2021-42659 | 0.00 | — | 0.01 | May 24, 2022 | There is a buffer overflow vulnerability in the Web server httpd of the router in Tenda router devices such as Tenda AC9 V1.0 V15.03.02.19(6318) and Tenda AC9 V3.0 V15.03.06.42_multi. When setting the virtual service, the httpd program will crash and exit when the super-long… | |||
| CVE-2022-30033 | 0.00 | — | 0.01 | May 18, 2022 | Tenda TX9 Pro V22.03.02.10 is vulnerable to Buffer Overflow via the functtion setIPv6Status() in httpd module. | |||
| CVE-2022-28917 | 0.00 | — | 0.09 | May 18, 2022 | Tenda AX12 v22.03.01.21_cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp. | |||
| CVE-2022-30040 | 0.00 | — | 0.02 | May 11, 2022 | Tenda AX1803 v1.0.0.1_2890 is vulnerable to Buffer Overflow. The vulnerability lies in rootfs_ In / goform / setsystimecfg of / bin / tdhttpd in ubif file system, attackers can access http://ip/goform/SetSysTimeCfg, and by setting the ntpserve parameter, the stack buffer… | |||
| CVE-2022-29591 | 0.00 | — | 0.01 | May 10, 2022 | Tenda TX9 Pro 22.03.02.10 devices have a SetNetControlList buffer overflow. | |||
| CVE-2022-28973 | 0.00 | — | 0.01 | May 6, 2022 | Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the wanMTU parameter in the function fromAdvSetMacMtuWan. This vulnerability allows attackers to cause a Denial of Service (DoS). | |||
| CVE-2022-28972 | 0.00 | — | 0.01 | May 6, 2022 | Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the timeZone parameter in the function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS). | |||
| CVE-2022-28971 | 0.00 | — | 0.01 | May 6, 2022 | Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetIpMacBind. This vulnerability allows attackers to cause a Denial of Service (DoS). |
- CVE-2022-37806Aug 25, 2022risk 0.00cvss —epss 0.01
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromDhcpListClient.
- CVE-2022-37805Aug 25, 2022risk 0.00cvss —epss 0.01
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromWizardHandle.
- CVE-2022-37811Aug 25, 2022risk 0.00cvss —epss 0.01
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the startIp parameter in the function formSetPPTPServer.
- CVE-2022-37812Aug 25, 2022risk 0.00cvss —epss 0.01
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the firewallEn parameter in the function formSetFirewallCfg.
- CVE-2022-37803Aug 25, 2022risk 0.00cvss —epss 0.01
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromAddressNat.
- CVE-2022-37801Aug 25, 2022risk 0.00cvss —epss 0.01
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function formSetQosBand.
- CVE-2022-37800Aug 25, 2022risk 0.00cvss —epss 0.01
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function fromSetRouteStatic.
- CVE-2022-37804Aug 25, 2022risk 0.00cvss —epss 0.01
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter in the function saveParentControlInfo.
- CVE-2022-37802Aug 25, 2022risk 0.00cvss —epss 0.01
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromNatStaticSetting.
- CVE-2022-37799Aug 25, 2022risk 0.00cvss —epss 0.01
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter at the function setSmartPowerManagement.
- CVE-2022-37798Aug 25, 2022risk 0.00cvss —epss 0.01
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function formSetVirtualSer.
- CVE-2022-36233Aug 19, 2022risk 0.00cvss —epss 0.00
Tenda AC9 V15.03.2.13 is vulnerable to Buffer Overflow via httpd, form_fast_setting_wifi_set. httpd.
- CVE-2022-37175Aug 19, 2022risk 0.00cvss —epss 0.01
Tenda ac15 firmware V15.03.05.18 httpd server has stack buffer overflow in /goform/formWifiBasicSet.
- CVE-2022-35201Aug 19, 2022risk 0.00cvss —epss 0.02
Tenda-AC18 V15.03.05.05 was discovered to contain a remote command execution (RCE) vulnerability.
- CVE-2022-35561Aug 11, 2022risk 0.00cvss —epss 0.01
A stack overflow vulnerability exists in /goform/WifiMacFilterSet in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.
- CVE-2022-35560Aug 11, 2022risk 0.00cvss —epss 0.01
A stack overflow vulnerability exists in /goform/wifiSSIDset in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.
- CVE-2022-35559Aug 11, 2022risk 0.00cvss —epss 0.11
A stack overflow vulnerability exists in /goform/setAutoPing in Tenda W6 V1.0.0.9(4122), which allows an attacker to construct ping1 parameters and ping2 parameters for a stack overflow attack. An attacker can use this vulnerability to execute arbitrary code execution.
- CVE-2022-35558Aug 11, 2022risk 0.00cvss —epss 0.01
A stack overflow vulnerability exists in /goform/WifiMacFilterGet in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.
- CVE-2022-35557Aug 11, 2022risk 0.00cvss —epss 0.01
A stack overflow vulnerability exists in /goform/wifiSSIDget in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.
- CVE-2022-34597Jul 6, 2022risk 0.00cvss —epss 0.03
Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability via the function WanParameterSetting.
- CVE-2022-32383Jul 6, 2022risk 0.00cvss —epss 0.01
Tenda AC23 v16.03.07.44 was discovered to contain a stack overflow via the AdvSetMacMtuWan function.
- CVE-2022-32385Jul 6, 2022risk 0.00cvss —epss 0.02
Tenda AC23 v16.03.07.44 is vulnerable to Stack Overflow that will allow for the execution of arbitrary code (remote).
- CVE-2022-32386Jul 6, 2022risk 0.00cvss —epss 0.11
Tenda AC23 v16.03.07.44 was discovered to contain a buffer overflow via fromAdvSetMacMtuWan.
- CVE-2022-32384Jul 1, 2022risk 0.00cvss —epss 0.01
Tenda AC23 v16.03.07.44 was discovered to contain a stack overflow via the security_5g parameter in the function formWifiBasicSet.
- CVE-2022-32030Jul 1, 2022risk 0.00cvss —epss 0.01
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function formSetQosBand.
- CVE-2022-32031Jul 1, 2022risk 0.00cvss —epss 0.01
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetRouteStatic.
- CVE-2022-32032Jul 1, 2022risk 0.00cvss —epss 0.09
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the deviceList parameter in the function formAddMacfilterRule.
- CVE-2022-32033Jul 1, 2022risk 0.00cvss —epss 0.01
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the function formSetVirtualSer.
- CVE-2022-32034Jul 1, 2022risk 0.00cvss —epss 0.01
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the items parameter in the function formdelMasteraclist.
- CVE-2022-32035Jul 1, 2022risk 0.00cvss —epss 0.13
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formMasterMng.
- CVE-2022-32036Jul 1, 2022risk 0.00cvss —epss 0.01
Tenda M3 V1.0.0.12 was discovered to contain multiple stack overflow vulnerabilities via the ssidList, storeName, and trademark parameters in the function formSetStoreWeb.
- CVE-2022-32037Jul 1, 2022risk 0.00cvss —epss 0.01
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAPCfg.
- CVE-2022-32039Jul 1, 2022risk 0.00cvss —epss 0.01
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the listN parameter in the function fromDhcpListClient.
- CVE-2022-32040Jul 1, 2022risk 0.00cvss —epss 0.01
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetCfm.
- CVE-2022-32041Jul 1, 2022risk 0.00cvss —epss 0.01
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formGetPassengerAnalyseData.
- CVE-2022-32043Jul 1, 2022risk 0.00cvss —epss 0.01
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAccessCodeInfo.
- CVE-2022-30477May 26, 2022risk 0.00cvss —epss 0.01
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/SetClientState request.
- CVE-2022-30476May 26, 2022risk 0.00cvss —epss 0.01
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/SetFirewallCfg request.
- CVE-2022-30475May 26, 2022risk 0.00cvss —epss 0.01
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/WifiExtraSet request.
- CVE-2022-30474May 26, 2022risk 0.00cvss —epss 0.01
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a heap overflow in the httpd module when handling /goform/saveParentControlInfo request.
- CVE-2022-30472May 26, 2022risk 0.00cvss —epss 0.01
Tenda AC Seris Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function fromAddressNat
- CVE-2022-30473May 26, 2022risk 0.00cvss —epss 0.01
Tenda AC Series Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function form_fast_setting_wifi_set
- CVE-2021-42659May 24, 2022risk 0.00cvss —epss 0.01
There is a buffer overflow vulnerability in the Web server httpd of the router in Tenda router devices such as Tenda AC9 V1.0 V15.03.02.19(6318) and Tenda AC9 V3.0 V15.03.06.42_multi. When setting the virtual service, the httpd program will crash and exit when the super-long…
- CVE-2022-30033May 18, 2022risk 0.00cvss —epss 0.01
Tenda TX9 Pro V22.03.02.10 is vulnerable to Buffer Overflow via the functtion setIPv6Status() in httpd module.
- CVE-2022-28917May 18, 2022risk 0.00cvss —epss 0.09
Tenda AX12 v22.03.01.21_cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp.
- CVE-2022-30040May 11, 2022risk 0.00cvss —epss 0.02
Tenda AX1803 v1.0.0.1_2890 is vulnerable to Buffer Overflow. The vulnerability lies in rootfs_ In / goform / setsystimecfg of / bin / tdhttpd in ubif file system, attackers can access http://ip/goform/SetSysTimeCfg, and by setting the ntpserve parameter, the stack buffer…
- CVE-2022-29591May 10, 2022risk 0.00cvss —epss 0.01
Tenda TX9 Pro 22.03.02.10 devices have a SetNetControlList buffer overflow.
- CVE-2022-28973May 6, 2022risk 0.00cvss —epss 0.01
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the wanMTU parameter in the function fromAdvSetMacMtuWan. This vulnerability allows attackers to cause a Denial of Service (DoS).
- CVE-2022-28972May 6, 2022risk 0.00cvss —epss 0.01
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the timeZone parameter in the function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS).
- CVE-2022-28971May 6, 2022risk 0.00cvss —epss 0.01
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetIpMacBind. This vulnerability allows attackers to cause a Denial of Service (DoS).
Page 38 of 41