Tenda: Security Vulnerabilities
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/qossetting.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-12-08
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/SafeUrlFilter.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-12-08
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/SafeClientFilter.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-12-08
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/L7Im.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-12-08
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the opttype parameter at /goform/IPSECsave.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-12-08
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the downaction parameter at /goform/CertListInfo.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-12-08
Tenda A18 v15.13.07.09 was discovered to contain a stack overflow via the security_5g parameter at /goform/WifiBasicSet.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-12-08
An access control issue in Tenda A18 v15.13.07.09 allows unauthenticated attackers to access the Telnet service.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-12-08
Tenda W6-S v1.0.0.4(510) was discovered to contain a command injection vulnerability in the tpi_get_ping_output function at /goform/exeCommand.
CVSS Score
9.8
EPSS Score
0.184
Published
2022-12-08
An issue in the component tpi_systool_handle(0) (/goform/SysToolReboot) of Tenda W6-S v1.0.0.4(510) allows unauthenticated attackers to arbitrarily reboot the device.
CVSS Score
7.5
EPSS Score
0.012
Published
2022-12-08