Filtered by vendor Tenda
Subscriptions
Total
741 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2017-14515 | 1 Tenda | 2 W15e, W15e Firmware | 2022-10-03 | N/A |
Heap-based Buffer Overflow on Tenda W15E devices before 15.11.0.14 allows remote attackers to cause a denial of service (temporary HTTP outage and forced logout) via unspecified vectors. | ||||
CVE-2017-16923 | 1 Tenda | 6 Ac15, Ac15 Firmware, Ac18 and 3 more | 2022-10-03 | N/A |
Command Injection vulnerability in app_data_center on Shenzhen Tenda Ac9 US_AC9V1.0BR_V15.03.05.14_multi_TD01, Ac9 ac9_kf_V15.03.05.19(6318_)_cn, Ac15 US_AC15V1.0BR_V15.03.05.18_multi_TD01, Ac15 US_AC15V1.0BR_V15.03.05.19_multi_TD01, Ac18 US_AC18V1.0BR_V15.03.05.05_multi_TD01, and Ac18 ac18_kf_V15.03.05.19(6318_)_cn devices allows remote unauthenticated attackers to execute arbitrary OS commands via a crafted cgi-bin/luci/usbeject?dev_name= GET request from the LAN. This occurs because the "sub_A6E8 usbeject_process_entry" function executes a system function with untrusted input. | ||||
CVE-2022-40942 | 1 Tenda | 2 Tx3, Tx3 Firmware | 2022-09-30 | 9.8 Critical |
Tenda TX3 US_TX3V1.0br_V16.03.13.11 is vulnerable to stack overflow via compare_parentcontrol_time. | ||||
CVE-2022-40855 | 1 Tenda | 2 W20e, W20e Firmware | 2022-09-28 | 9.8 Critical |
Tenda W20E router V15.11.0.6 contains a stack overflow in the function formSetPortMapping with post request 'goform/setPortMapping/'. This vulnerability allows attackers to cause a Denial of Service (DoS) or Remote Code Execution (RCE) via the portMappingServer, portMappingProtocol, portMappingWan, porMappingtInternal, and portMappingExternal parameters. | ||||
CVE-2022-40866 | 1 Tenda | 2 W20e, W20e Firmware | 2022-09-28 | 9.8 Critical |
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formSetDebugCfg with request /goform/setDebugCfg/ | ||||
CVE-2022-40867 | 1 Tenda | 2 W20e, W20e Firmware | 2022-09-28 | 9.8 Critical |
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formIPMacBindDel with the request /goform/delIpMacBind/ | ||||
CVE-2022-40868 | 1 Tenda | 2 W20e, W20e Firmware | 2022-09-28 | 9.8 Critical |
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formDelDhcpRule with the request /goform/delDhcpRules/ | ||||
CVE-2022-40854 | 1 Tenda | 2 Ac18, Ac18 Firmware | 2022-09-28 | 9.8 Critical |
Tenda AC18 router contained a stack overflow vulnerability in /goform/fast_setting_wifi_set | ||||
CVE-2022-40101 | 1 Tenda | 2 I9, I9 Firmware | 2022-09-27 | 7.5 High |
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formWifiMacFilterSet function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string. | ||||
CVE-2022-40105 | 1 Tenda | 2 I9, I9 Firmware | 2022-09-27 | 7.5 High |
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formWifiMacFilterGet function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string. | ||||
CVE-2022-40100 | 1 Tenda | 2 I9, I9 Firmware | 2022-09-27 | 9.8 Critical |
Tenda i9 v1.0.0.8(3828) was discovered to contain a command injection vulnerability via the FormexeCommand function. | ||||
CVE-2022-40106 | 1 Tenda | 2 I9, I9 Firmware | 2022-09-27 | 7.5 High |
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the set_local_time function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string. | ||||
CVE-2022-40102 | 1 Tenda | 2 I9, I9 Firmware | 2022-09-27 | 7.5 High |
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formwrlSSIDset function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string. | ||||
CVE-2022-40104 | 1 Tenda | 2 I9, I9 Firmware | 2022-09-27 | 7.5 High |
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formwrlSSIDget function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string. | ||||
CVE-2022-40103 | 1 Tenda | 2 I9, I9 Firmware | 2022-09-27 | 5.5 Medium |
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formSetAutoPing function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string. | ||||
CVE-2022-40107 | 1 Tenda | 2 I9, I9 Firmware | 2022-09-27 | 7.5 High |
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formexeCommand function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string. | ||||
CVE-2022-40861 | 1 Tenda | 2 Ac18, Ac18 Firmware | 2022-09-26 | 7.2 High |
Tenda AC18 router V15.03.05.19 contains a stack overflow vulnerability in the formSetQosBand->FUN_0007db78 function with the request /goform/SetNetControlList/ | ||||
CVE-2022-40851 | 1 Tenda | 2 Ac15, Ac15 Firmware | 2022-09-23 | 9.8 Critical |
Tenda AC15 V15.03.05.19 contained a stack overflow via the function fromAddressNat. | ||||
CVE-2022-40076 | 1 Tenda | 2 Ac21, Ac21 Firmware | 2022-09-21 | 7.5 High |
Tenda AC21 V16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, function: fromSetWifiGusetBasic. | ||||
CVE-2022-40075 | 1 Tenda | 2 Ac21, Ac21 Firmware | 2022-09-21 | 7.5 High |
Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, form_fast_setting_wifi_set. |