Tenda: Security Vulnerabilities
Buffer Overflow vulnerability in Tenda i29 versions 1.0 V1.0.0.5 and 1.0 V1.0.0.2, allows remote attackers to cause a denial of service (DoS) via the pingIp parameter in the pingSet function.
CVSS Score
7.5
EPSS Score
0.129
Published
2024-01-05
Tenda AX3 v16.03.12.11 was discovered to contain a remote code execution (RCE) vulnerability via the list parameter at /goform/SetNetControlList.
CVSS Score
9.8
EPSS Score
0.026
Published
2024-01-04
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formGetWeiXinConfig.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-12-26
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function R7WebsSecurityHandler.
CVSS Score
9.8
EPSS Score
0.092
Published
2023-12-26
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function upgrade.
CVSS Score
9.8
EPSS Score
0.162
Published
2023-12-26
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function fromSetLocalVlanInfo.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-12-26
Tenda M3 V1.0.0.12(4856) was discovered to contain a Command Execution vulnerability via the function TendaTelnet.
CVSS Score
9.8
EPSS Score
0.002
Published
2023-12-26
Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formSetAutoPing.
CVSS Score
9.8
EPSS Score
0.004
Published
2023-12-26
Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formSetDiagnoseInfo .
CVSS Score
9.8
EPSS Score
0.026
Published
2023-12-26
Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formexeCommand .
CVSS Score
9.8
EPSS Score
0.019
Published
2023-12-26