Shodan
Vulnerabilities
Vulnerable Software
Tenda:  Security Vulnerabilities
CVE-2022-24148
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg. This vulnerability allows attackers to execute arbitrary commands via the dmzIp parameter.
CVSS Score
9.8
EPSS Score
0.091
Published
2022-02-04
CVE-2022-24149
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetWirelessRepeat. This vulnerability allows attackers to cause a Denial of Service (DoS) via the wpapsk_crypto parameter.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-02-04
CVE-2022-24150
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function formSetSafeWanWebMan. This vulnerability allows attackers to execute arbitrary commands via the remoteIp parameter.
CVSS Score
9.8
EPSS Score
0.091
Published
2022-02-04
CVE-2022-24151
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetWifiGusetBasic. This vulnerability allows attackers to cause a Denial of Service (DoS) via the shareSpeed parameter.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-02-04
CVE-2022-24152
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetRouteStatic. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-02-04
CVE-2022-24153
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formAddMacfilterRule. This vulnerability allows attackers to cause a Denial of Service (DoS) via the devName parameter.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-02-04
CVE-2022-24154
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetRebootTimer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the rebootTime parameter.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-02-04
CVE-2022-24155
Tenda AX3 v16.03.12.10_CN was discovered to contain a heap overflow in the function setSchedWifi. This vulnerability allows attackers to cause a Denial of Service (DoS) via the schedStartTime and schedEndTime parameters.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-02-04
CVE-2022-24156
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetVirtualSer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-02-04
CVE-2022-24157
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetMacFilterCfg. This vulnerability allows attackers to cause a Denial of Service (DoS) via the deviceList parameter.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-02-04


Products
Pricing
Contact Us

Shodan ® - All rights reserved