Shodan
Vulnerabilities
Vulnerable Software
Tenda:  >> Ac9  Security Vulnerabilities
CVE-2023-37717
Tenda F1202 V1.0BR_V1.2.0.20(408) and FH1202_V1.2.0.19_EN, AC10 V1.0, AC1206 V1.0, AC7 V1.0, AC5 V1.0, and AC9 V3.0 were discovered to contain a stack overflow in the page parameter in the function fromDhcpListClient.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-07-14
CVE-2022-36571
Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the mask parameter at /goform/WanParameterSetting.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-08-31
CVE-2022-36568
Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the list parameter at /goform/setPptpUserList.
CVSS Score
8.8
EPSS Score
0.002
Published
2022-08-31
CVE-2022-36569
Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the deviceList parameter at /goform/setMacFilterCfg.
CVSS Score
8.8
EPSS Score
0.002
Published
2022-08-31
CVE-2022-36570
Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the time parameter at /goform/SetLEDCfg.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-08-31
CVE-2022-36273
Tenda AC9 V15.03.2.21_cn is vulnerable to command injection via goform/SetSysTimeCfg.
CVSS Score
9.8
EPSS Score
0.018
Published
2022-08-16
CVE-2021-42659
There is a buffer overflow vulnerability in the Web server httpd of the router in Tenda router devices such as Tenda AC9 V1.0 V15.03.02.19(6318) and Tenda AC9 V3.0 V15.03.06.42_multi. When setting the virtual service, the httpd program will crash and exit when the super-long list parameter occurs.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-05-24
CVE-2022-28560
There is a stack overflow vulnerability in the goform/fast_setting_wifi_set function in the httpd service of Tenda ac9 15.03.2.21_cn router. An attacker can obtain a stable shell through a carefully constructed payload
CVSS Score
9.8
EPSS Score
0.004
Published
2022-05-03
CVE-2022-27022
There is a stack overflow vulnerability in the SetSysTimeCfg() function in the httpd service of Tenda AC9 V15.03.2.21_cn. The attacker can obtain a stable root shell through a constructed payload.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-04-07
CVE-2022-27016
There is a stack overflow vulnerability in the SetStaticRouteCfg() function in the httpd service of Tenda AC9 15.03.2.21_cn.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-04-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved