Tenda: Security Vulnerabilities
Tenda AC1206 V15.03.06.23 was discovered to contain multiple stack overflows via the deviceMac and the device_id parameters in the function addWifiMacFilter.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-08-25
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the PPPOEPassword parameter in the function formQuickIndex.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-08-25
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromSetIpMacBind.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-08-25
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the function fromSetIpMacBind.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-08-25
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the list parameter at the function formSetQosBand.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-08-25
Tenda ac15 firmware V15.03.05.18 httpd server has stack buffer overflow in /goform/formWifiBasicSet.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-08-19
Tenda-AC18 V15.03.05.05 was discovered to contain a remote command execution (RCE) vulnerability.
CVSS Score
9.8
EPSS Score
0.016
Published
2022-08-19
Tenda AC9 V15.03.2.21_cn is vulnerable to command injection via goform/SetSysTimeCfg.
CVSS Score
9.8
EPSS Score
0.184
Published
2022-08-16
A command injection vulnerability exists in /goform/exeCommand in Tenda W6 V1.0.0.9(4122), which allows attackers to construct cmdinput parameters for arbitrary command execution.
CVSS Score
9.8
EPSS Score
0.079
Published
2022-08-12
A stack overflow vulnerability exists in /goform/wifiSSIDget in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-08-12