Shodan
Vulnerabilities
Vulnerable Software
Tenda:  Security Vulnerabilities
CVE-2022-35555
A command injection vulnerability exists in /goform/exeCommand in Tenda W6 V1.0.0.9(4122), which allows attackers to construct cmdinput parameters for arbitrary command execution.
CVSS Score
9.8
EPSS Score
0.062
Published
2022-08-12
CVE-2022-35557
A stack overflow vulnerability exists in /goform/wifiSSIDget in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-08-12
CVE-2022-35558
A stack overflow vulnerability exists in /goform/WifiMacFilterGet in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-08-12
CVE-2022-35559
A stack overflow vulnerability exists in /goform/setAutoPing in Tenda W6 V1.0.0.9(4122), which allows an attacker to construct ping1 parameters and ping2 parameters for a stack overflow attack. An attacker can use this vulnerability to execute arbitrary code execution.
CVSS Score
9.8
EPSS Score
0.013
Published
2022-08-12
CVE-2022-35560
A stack overflow vulnerability exists in /goform/wifiSSIDset in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-08-12
CVE-2022-35561
A stack overflow vulnerability exists in /goform/WifiMacFilterSet in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-08-12
CVE-2022-32054
Tenda AC10 US_AC10V1.0RTL_V15.03.06.26_multi_TD01 was discovered to contain a remote code execution (RCE) vulnerability via the lanIp parameter.
CVSS Score
9.8
EPSS Score
0.217
Published
2022-07-07
CVE-2022-34595
Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection vulnerability via the function setipv6status.
CVSS Score
9.8
EPSS Score
0.184
Published
2022-07-06
CVE-2022-34596
Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection vulnerability via the function WanParameterSetting.
CVSS Score
9.8
EPSS Score
0.184
Published
2022-07-06
CVE-2022-34597
Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability via the function WanParameterSetting.
CVSS Score
9.8
EPSS Score
0.061
Published
2022-07-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved