Tenda

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-45513 1Tenda 1Fh451 Firmware May 24, 2025 May 9, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda FH451 V1.0.0.9 has a stack overflow vulnerability in the function.P2pListFilter.
CVE-2025-45514 1Tenda 1Fh451 Firmware May 27, 2025 May 7, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Tenda FH451 V1.0.0.9 has a stack overflow vulnerability in the function.frmL7ImForm.
CVE-2025-44899 1Tenda 1Rx3 Firmware Jun 4, 2025 May 6, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 There is a stack overflow vulnerability in Tenda RX3 V1.0br_V16.03.13.11 In the fromSetWifiGusetBasic function of the web url /goform/ WifiGuestSet, the manipulation of the parameter shareSpeed leads to stack overflow.
CVE-2025-44900 1Tenda 1Rx3 Firmware Jun 4, 2025 May 6, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In Tenda RX3 V1.0br_V16.03.13.11 in the GetParentControlInfo function of the web url /goform/GetParentControlInfo, the manipulation of the parameter mac leads to stack overflow.
CVE-2025-4368 1Tenda 1Ac8 Firmware May 13, 2025 May 6, 2025 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability, which was classified as critical, was found in Tenda AC8 16.03.34.06. Affected is the function formGetRouterStatus of the file /goform/MtuSetMacWan. The manipulation of the argument shareSpeed leads to b...Show more A vulnerability, which was classified as critical, was found in Tenda AC8 16.03.34.06. Affected is the function formGetRouterStatus of the file /goform/MtuSetMacWan. The manipulation of the argument shareSpeed leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-4357 1Tenda 1Rx3 Firmware Aug 25, 2025 May 6, 2025 5.1 MEDIUM· v4 9.8 CRITICAL· v3 5.8 MEDIUM· v2 A vulnerability was found in Tenda RX3 16.03.13.11_multi. It has been rated as critical. This issue affects some unknown processing of the file /goform/telnet. The manipulation leads to command injection. The attack may...Show more A vulnerability was found in Tenda RX3 16.03.13.11_multi. It has been rated as critical. This issue affects some unknown processing of the file /goform/telnet. The manipulation leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-4299 1Tenda 1Ac1206 Firmware May 13, 2025 May 6, 2025 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability was found in Tenda AC1206 up to 15.03.06.23. It has been rated as critical. This issue affects the function setSchedWifi of the file /goform/openSchedWifi. The manipulation leads to buffer overflow. The a...Show more A vulnerability was found in Tenda AC1206 up to 15.03.06.23. It has been rated as critical. This issue affects the function setSchedWifi of the file /goform/openSchedWifi. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-4298 1Tenda 1Ac1206 Firmware May 13, 2025 May 6, 2025 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability was found in Tenda AC1206 up to 15.03.06.23. It has been declared as critical. This vulnerability affects the function formSetCfm of the file /goform/setcfm. The manipulation leads to buffer overflow. The...Show more A vulnerability was found in Tenda AC1206 up to 15.03.06.23. It has been declared as critical. This vulnerability affects the function formSetCfm of the file /goform/setcfm. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-45042 1Tenda 1Ac9 Firmware May 7, 2025 May 5, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC9 v15.03.05.14 was discovered to contain a command injection vulnerability via the Telnet function.
CVE-2025-44877 1Tenda 1Ac9 Firmware May 27, 2025 May 2, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC9 V15.03.06.42_multi was found to contain a command injection vulnerability in the formSetSambaConf function via the usbname parameter. This vulnerability allows attackers to execute arbitrary commands via a craf...Show more Tenda AC9 V15.03.06.42_multi was found to contain a command injection vulnerability in the formSetSambaConf function via the usbname parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.Show less
CVE-2025-44872 1Tenda 1Ac9 Firmware May 27, 2025 May 2, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC9 V15.03.06.42_multi was found to contain a command injection vulnerability in the formsetUsbUnload function via the deviceName parameter. This vulnerability allows attackers to execute arbitrary commands via a c...Show more Tenda AC9 V15.03.06.42_multi was found to contain a command injection vulnerability in the formsetUsbUnload function via the deviceName parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.Show less
CVE-2025-46635 1Tenda 1Rx2 Pro Firmware May 27, 2025 May 1, 2025 N/A· v4 7.1 HIGH· v3 N/A· v2 An issue was discovered on Tenda RX2 Pro 16.03.30.14 devices. Improper network isolation between the guest Wi-Fi network and other network interfaces on the router allows an attacker (who is authenticated to the guest Wi...Show more An issue was discovered on Tenda RX2 Pro 16.03.30.14 devices. Improper network isolation between the guest Wi-Fi network and other network interfaces on the router allows an attacker (who is authenticated to the guest Wi-Fi) to access resources on the router and/or resources and devices on other networks hosted by the router by configuring a static IP address (within the non-guest subnet) on their host.Show less
CVE-2025-46634 1Tenda 1Rx2 Pro Firmware May 27, 2025 May 1, 2025 N/A· v4 8.2 HIGH· v3 N/A· v2 Cleartext transmission of sensitive information in the web management portal of the Tenda RX2 Pro 16.03.30.14 may allow an unauthenticated attacker to authenticate to the web management portal by collecting credentials f...Show more Cleartext transmission of sensitive information in the web management portal of the Tenda RX2 Pro 16.03.30.14 may allow an unauthenticated attacker to authenticate to the web management portal by collecting credentials from observed/collected traffic. It implements encryption, but not until after the user has transmitted the hash of their password in cleartext. The hash can be replayed to authenticate.Show less
CVE-2025-46633 1Tenda 1Rx2 Pro Firmware May 27, 2025 May 1, 2025 N/A· v4 8.2 HIGH· v3 N/A· v2 Cleartext transmission of sensitive information in the web management portal of the Tenda RX2 Pro 16.03.30.14 allows an attacker to decrypt traffic between the client and server by collecting the symmetric AES key from c...Show more Cleartext transmission of sensitive information in the web management portal of the Tenda RX2 Pro 16.03.30.14 allows an attacker to decrypt traffic between the client and server by collecting the symmetric AES key from collected and/or observed traffic. The AES key in sent in cleartext in response to successful authentication. The IV is always EU5H62G9ICGRNI43.Show less
CVE-2025-46632 1Tenda 1Rx2 Pro Firmware May 27, 2025 May 1, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Initialization vector (IV) reuse in the web management portal of the Tenda RX2 Pro 16.03.30.14 may allow an attacker to discern information about or more easily decrypt encrypted messages between client and server.
CVE-2025-46631 1Tenda 1Rx2 Pro Firmware May 27, 2025 May 1, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Improper access controls in the web management portal of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to enable telnet access to the router's OS by sending a /goform/telnet web request.
CVE-2025-46630 1Tenda 1Rx2 Pro Firmware May 27, 2025 May 1, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Improper access controls in the web management portal of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to enable 'ate' (a remote system management binary) by sending a /goform/ate web request.
CVE-2025-46629 1Tenda 1Rx2 Pro Firmware May 27, 2025 May 1, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Lack of access controls in the 'ate' management binary of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to perform unauthorized configuration changes for any router where 'ate' has been enabled...Show more Lack of access controls in the 'ate' management binary of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to perform unauthorized configuration changes for any router where 'ate' has been enabled by sending a crafted UDP packetShow less
CVE-2025-46628 1Tenda 1Rx2 Pro Firmware May 27, 2025 May 1, 2025 N/A· v4 7.3 HIGH· v3 N/A· v2 Lack of input validation/sanitization in the 'ate' management service in the Tenda RX2 Pro 16.03.30.14 allows an unauthorized remote attacker to gain root shell access to the device by sending a crafted UDP packet to the...Show more Lack of input validation/sanitization in the 'ate' management service in the Tenda RX2 Pro 16.03.30.14 allows an unauthorized remote attacker to gain root shell access to the device by sending a crafted UDP packet to the 'ate' service when it is enabled. Authentication is not needed.Show less
CVE-2025-46627 1Tenda 1Rx2 Pro Firmware May 27, 2025 May 1, 2025 N/A· v4 8.2 HIGH· v3 N/A· v2 Use of weak credentials in the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated attacker to authenticate to the telnet service by calculating the root password based on easily-obtained device information. The password...Show more Use of weak credentials in the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated attacker to authenticate to the telnet service by calculating the root password based on easily-obtained device information. The password is based on the last two digits/octets of the MAC address.Show less

Previous 1...303132...92 Next