Shodan
Vulnerabilities
Vulnerable Software
Tenda:  Security Vulnerabilities
CVE-2021-42659
There is a buffer overflow vulnerability in the Web server httpd of the router in Tenda router devices such as Tenda AC9 V1.0 V15.03.02.19(6318) and Tenda AC9 V3.0 V15.03.06.42_multi. When setting the virtual service, the httpd program will crash and exit when the super-long list parameter occurs.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-05-24
CVE-2022-30033
Tenda TX9 Pro V22.03.02.10 is vulnerable to Buffer Overflow via the functtion setIPv6Status() in httpd module.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-05-18
CVE-2022-28917
Tenda AX12 v22.03.01.21_cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp.
CVSS Score
7.5
EPSS Score
0.024
Published
2022-05-18
CVE-2022-30040
Tenda AX1803 v1.0.0.1_2890 is vulnerable to Buffer Overflow. The vulnerability lies in rootfs_ In / goform / setsystimecfg of / bin / tdhttpd in ubif file system, attackers can access http://ip/goform/SetSysTimeCfg, and by setting the ntpserve parameter, the stack buffer overflow can be caused to achieve the effect of router denial of service.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-05-11
CVE-2022-29591
Tenda TX9 Pro 22.03.02.10 devices have a SetNetControlList buffer overflow.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-05-10
CVE-2022-28969
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the shareSpeed parameter in the function fromSetWifiGusetBasic. This vulnerability allows attackers to cause a Denial of Service (DoS).
CVSS Score
7.5
EPSS Score
0.003
Published
2022-05-06
CVE-2022-28970
Tenda AX1806 v1.0.0.1 was discovered to contain a heap overflow via the mac parameter in the function GetParentControlInfo. This vulnerability allows attackers to cause a Denial of Service (DoS).
CVSS Score
7.5
EPSS Score
0.003
Published
2022-05-06
CVE-2022-28971
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetIpMacBind. This vulnerability allows attackers to cause a Denial of Service (DoS).
CVSS Score
7.5
EPSS Score
0.003
Published
2022-05-06
CVE-2022-28972
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the timeZone parameter in the function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS).
CVSS Score
7.5
EPSS Score
0.003
Published
2022-05-06
CVE-2022-28973
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the wanMTU parameter in the function fromAdvSetMacMtuWan. This vulnerability allows attackers to cause a Denial of Service (DoS).
CVSS Score
7.5
EPSS Score
0.003
Published
2022-05-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved