Shodan
Vulnerabilities
Vulnerable Software
Tendacn:  >> Ac6  >> 1.0  Security Vulnerabilities
CVE-2022-45656
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the time parameter in the fromSetSysTime function.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-12-02
CVE-2022-45657
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the list parameter in the fromSetIpMacBind function.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-12-02
CVE-2022-45658
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the schedEndTime parameter in the setSchedWifi function.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-12-02
CVE-2022-45659
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the wpapsk_crypto parameter in the fromSetWirelessRepeat function.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-12-02
CVE-2022-45660
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the schedStartTime parameter in the setSchedWifi function.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-12-02
CVE-2022-45643
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceId parameter in the addWifiMacFilter function.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-12-02
CVE-2022-45644
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceId parameter in the formSetClientState function.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-12-02
CVE-2022-45645
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceMac parameter in the addWifiMacFilter function.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-12-02
CVE-2022-45646
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the limitSpeedUp parameter in the formSetClientState function.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-12-02
CVE-2020-13389
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the /goform/openSchedWifi schedStartTime and schedEndTime parameters for a POST request, a value is directly used in a strcpy to a local variable placed on the stack, which overwrites the return address of a function. An attacker can construct a payload to carry out arbitrary code execution attacks.
CVSS Score
9.8
EPSS Score
0.021
Published
2020-05-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved