Shodan
Vulnerabilities
Vulnerable Software
Tenda:  >> M3 Firmware  >> 1.0.0.12(4856)  Security Vulnerabilities
CVE-2022-38566
Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formEmailTest. This vulnerability allows attackers to cause a Denial of Service (DoS) via the mailname parameter.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-08-28
CVE-2022-38567
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow vulnerability in the function formSetAdConfigInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the authIPs parameter.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-08-28
CVE-2022-38568
Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formSetFixTools. This vulnerability allows attackers to cause a Denial of Service (DoS) via the hostname parameter.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-08-28
CVE-2022-38569
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow in the function formDelAd.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-08-28
CVE-2022-38570
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow in the function formDelPushedAd. This vulnerability allows attackers to cause a Denial of Service (DoS) via the adPushUID parameter.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-08-28
CVE-2022-38571
Tenda M3 V1.0.0.12(4856) was discovered to contain a buffer overflow in the function formSetGuideListItem.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-08-28
CVE-2022-26289
Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/exeCommand.
CVSS Score
9.8
EPSS Score
0.145
Published
2022-03-24
CVE-2022-26290
Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/WriteFacMac.
CVSS Score
9.8
EPSS Score
0.145
Published
2022-03-24
CVE-2022-26536
Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/setFixTools.
CVSS Score
9.8
EPSS Score
0.145
Published
2022-03-24
CVE-2022-27076
Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/delAd.
CVSS Score
9.8
EPSS Score
0.145
Published
2022-03-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved