VYPR

Vendor CVEs

Tenda

All CVEs

2,034 total · sorted by risk
  • CVE-2022-37806Aug 25, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromDhcpListClient.

  • CVE-2022-37805Aug 25, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromWizardHandle.

  • CVE-2022-37811Aug 25, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the startIp parameter in the function formSetPPTPServer.

  • CVE-2022-37812Aug 25, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the firewallEn parameter in the function formSetFirewallCfg.

  • CVE-2022-37803Aug 25, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromAddressNat.

  • CVE-2022-37801Aug 25, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function formSetQosBand.

  • CVE-2022-37800Aug 25, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function fromSetRouteStatic.

  • CVE-2022-37804Aug 25, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter in the function saveParentControlInfo.

  • CVE-2022-37802Aug 25, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromNatStaticSetting.

  • CVE-2022-37799Aug 25, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter at the function setSmartPowerManagement.

  • CVE-2022-37798Aug 25, 2022
    risk 0.00cvss epss 0.01

    Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function formSetVirtualSer.

  • CVE-2022-36233Aug 19, 2022
    risk 0.00cvss epss 0.00

    Tenda AC9 V15.03.2.13 is vulnerable to Buffer Overflow via httpd, form_fast_setting_wifi_set. httpd.

  • CVE-2022-37175Aug 19, 2022
    risk 0.00cvss epss 0.01

    Tenda ac15 firmware V15.03.05.18 httpd server has stack buffer overflow in /goform/formWifiBasicSet.

  • CVE-2022-35201Aug 19, 2022
    risk 0.00cvss epss 0.02

    Tenda-AC18 V15.03.05.05 was discovered to contain a remote command execution (RCE) vulnerability.

  • CVE-2022-35561Aug 11, 2022
    risk 0.00cvss epss 0.01

    A stack overflow vulnerability exists in /goform/WifiMacFilterSet in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.

  • CVE-2022-35560Aug 11, 2022
    risk 0.00cvss epss 0.01

    A stack overflow vulnerability exists in /goform/wifiSSIDset in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.

  • CVE-2022-35559Aug 11, 2022
    risk 0.00cvss epss 0.11

    A stack overflow vulnerability exists in /goform/setAutoPing in Tenda W6 V1.0.0.9(4122), which allows an attacker to construct ping1 parameters and ping2 parameters for a stack overflow attack. An attacker can use this vulnerability to execute arbitrary code execution.

  • CVE-2022-35558Aug 11, 2022
    risk 0.00cvss epss 0.01

    A stack overflow vulnerability exists in /goform/WifiMacFilterGet in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.

  • CVE-2022-35557Aug 11, 2022
    risk 0.00cvss epss 0.01

    A stack overflow vulnerability exists in /goform/wifiSSIDget in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.

  • CVE-2022-34597Jul 6, 2022
    risk 0.00cvss epss 0.03

    Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability via the function WanParameterSetting.

  • CVE-2022-32383Jul 6, 2022
    risk 0.00cvss epss 0.01

    Tenda AC23 v16.03.07.44 was discovered to contain a stack overflow via the AdvSetMacMtuWan function.

  • CVE-2022-32385Jul 6, 2022
    risk 0.00cvss epss 0.02

    Tenda AC23 v16.03.07.44 is vulnerable to Stack Overflow that will allow for the execution of arbitrary code (remote).

  • CVE-2022-32386Jul 6, 2022
    risk 0.00cvss epss 0.11

    Tenda AC23 v16.03.07.44 was discovered to contain a buffer overflow via fromAdvSetMacMtuWan.

  • CVE-2022-32384Jul 1, 2022
    risk 0.00cvss epss 0.01

    Tenda AC23 v16.03.07.44 was discovered to contain a stack overflow via the security_5g parameter in the function formWifiBasicSet.

  • CVE-2022-32030Jul 1, 2022
    risk 0.00cvss epss 0.01

    Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function formSetQosBand.

  • CVE-2022-32031Jul 1, 2022
    risk 0.00cvss epss 0.01

    Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetRouteStatic.

  • CVE-2022-32032Jul 1, 2022
    risk 0.00cvss epss 0.09

    Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the deviceList parameter in the function formAddMacfilterRule.

  • CVE-2022-32033Jul 1, 2022
    risk 0.00cvss epss 0.01

    Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the function formSetVirtualSer.

  • CVE-2022-32034Jul 1, 2022
    risk 0.00cvss epss 0.01

    Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the items parameter in the function formdelMasteraclist.

  • CVE-2022-32035Jul 1, 2022
    risk 0.00cvss epss 0.13

    Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formMasterMng.

  • CVE-2022-32036Jul 1, 2022
    risk 0.00cvss epss 0.01

    Tenda M3 V1.0.0.12 was discovered to contain multiple stack overflow vulnerabilities via the ssidList, storeName, and trademark parameters in the function formSetStoreWeb.

  • CVE-2022-32037Jul 1, 2022
    risk 0.00cvss epss 0.01

    Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAPCfg.

  • CVE-2022-32039Jul 1, 2022
    risk 0.00cvss epss 0.01

    Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the listN parameter in the function fromDhcpListClient.

  • CVE-2022-32040Jul 1, 2022
    risk 0.00cvss epss 0.01

    Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetCfm.

  • CVE-2022-32041Jul 1, 2022
    risk 0.00cvss epss 0.01

    Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formGetPassengerAnalyseData.

  • CVE-2022-32043Jul 1, 2022
    risk 0.00cvss epss 0.01

    Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAccessCodeInfo.

  • CVE-2022-30477May 26, 2022
    risk 0.00cvss epss 0.01

    Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/SetClientState request.

  • CVE-2022-30476May 26, 2022
    risk 0.00cvss epss 0.01

    Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/SetFirewallCfg request.

  • CVE-2022-30475May 26, 2022
    risk 0.00cvss epss 0.01

    Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/WifiExtraSet request.

  • CVE-2022-30474May 26, 2022
    risk 0.00cvss epss 0.01

    Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a heap overflow in the httpd module when handling /goform/saveParentControlInfo request.

  • CVE-2022-30472May 26, 2022
    risk 0.00cvss epss 0.01

    Tenda AC Seris Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function fromAddressNat

  • CVE-2022-30473May 26, 2022
    risk 0.00cvss epss 0.01

    Tenda AC Series Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function form_fast_setting_wifi_set

  • CVE-2021-42659May 24, 2022
    risk 0.00cvss epss 0.01

    There is a buffer overflow vulnerability in the Web server httpd of the router in Tenda router devices such as Tenda AC9 V1.0 V15.03.02.19(6318) and Tenda AC9 V3.0 V15.03.06.42_multi. When setting the virtual service, the httpd program will crash and exit when the super-long…

  • CVE-2022-30033May 18, 2022
    risk 0.00cvss epss 0.01

    Tenda TX9 Pro V22.03.02.10 is vulnerable to Buffer Overflow via the functtion setIPv6Status() in httpd module.

  • CVE-2022-28917May 18, 2022
    risk 0.00cvss epss 0.09

    Tenda AX12 v22.03.01.21_cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp.

  • CVE-2022-30040May 11, 2022
    risk 0.00cvss epss 0.02

    Tenda AX1803 v1.0.0.1_2890 is vulnerable to Buffer Overflow. The vulnerability lies in rootfs_ In / goform / setsystimecfg of / bin / tdhttpd in ubif file system, attackers can access http://ip/goform/SetSysTimeCfg, and by setting the ntpserve parameter, the stack buffer…

  • CVE-2022-29591May 10, 2022
    risk 0.00cvss epss 0.01

    Tenda TX9 Pro 22.03.02.10 devices have a SetNetControlList buffer overflow.

  • CVE-2022-28973May 6, 2022
    risk 0.00cvss epss 0.01

    Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the wanMTU parameter in the function fromAdvSetMacMtuWan. This vulnerability allows attackers to cause a Denial of Service (DoS).

  • CVE-2022-28972May 6, 2022
    risk 0.00cvss epss 0.01

    Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the timeZone parameter in the function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS).

  • CVE-2022-28971May 6, 2022
    risk 0.00cvss epss 0.01

    Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetIpMacBind. This vulnerability allows attackers to cause a Denial of Service (DoS).

Page 38 of 41