Vulnerabilities
Vulnerable Software
Tenda:  Security Vulnerabilities
An issue in Tenda AX12 v.16.03.49.18_cn+ allows a remote attacker to cause a denial of service via the Routing functionality and ICMP packet handling.
CVSS Score
6.5
EPSS Score
0.004
Published
2024-07-16
Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnerability via the deviceMac parameter at ip/goform/addWifiMacFilter.
CVSS Score
8.8
EPSS Score
0.006
Published
2024-07-16
A vulnerability in /goform/SetStaticRouteCfg in the sub_519F4 function in Tenda AX1806 1.0.0.1 firmware leads to stack-based buffer overflow.
CVSS Score
9.8
EPSS Score
0.005
Published
2024-07-15
A vulnerability in /goform/SetVirtualServerCfg in the sub_6320C function in Tenda AX1806 1.0.0.1 firmware leads to stack-based buffer overflow.
CVSS Score
9.8
EPSS Score
0.006
Published
2024-07-15
A vulnerability in /goform/SetNetControlList in the sub_656BC function in Tenda AX1806 1.0.0.1 firmware leads to stack-based buffer overflow.
CVSS Score
9.8
EPSS Score
0.005
Published
2024-07-15
Tenda AX12 v1.0 v22.03.01.46 contains a stack overflow in the deviceList parameter of the sub_42E410 function.
CVSS Score
6.8
EPSS Score
0.003
Published
2024-07-10
A vulnerability was found in Tenda AX1806 1.0.0.1. Affected by this issue is the function formSetRebootTimer of the file /goform/SetIpMacBind. The manipulation of the argument list leads to stack-based buffer overflow.
CVSS Score
6.5
EPSS Score
0.004
Published
2024-07-10
Vulnerability in Tenda AC8v4 .V16.03.34.09 due to sscanf and the last digit of s8 being overwritten with \x0. After executing set_client_qos, control over the gp register can be obtained.
CVSS Score
9.8
EPSS Score
0.006
Published
2024-07-09
Tenda O3V2 v1.0.0.12(3880) was discovered to contain a Blind Command Injection via stpEn parameter in the SetStp function. This vulnerability allows attackers to execute arbitrary commands with root privileges.
CVSS Score
9.8
EPSS Score
0.02
Published
2024-06-04
Tenda FH1206 V1.2.0.8(8155) was discovered to contain a command injection vulnerability via the mac parameter at ip/goform/WriteFacMac.
CVSS Score
9.8
EPSS Score
0.018
Published
2024-05-24


Contact Us

Shodan ® - All rights reserved