Tenda

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-8229 1Tenda 1O6 Firmware Aug 29, 2024 Aug 28, 2024 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability was found in Tenda O6 1.0.0.7(2054). It has been declared as critical. This vulnerability affects the function frommacFilterModify of the file /goform/operateMacFilter. The manipulation of the argument ma...Show more A vulnerability was found in Tenda O6 1.0.0.7(2054). It has been declared as critical. This vulnerability affects the function frommacFilterModify of the file /goform/operateMacFilter. The manipulation of the argument mac leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-8228 1Tenda 1O5 Firmware Aug 29, 2024 Aug 28, 2024 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability was found in Tenda O5 1.0.0.8(5017). It has been classified as critical. This affects the function fromSafeSetMacFilter of the file /goform/setMacFilterList. The manipulation of the argument remark/type/t...Show more A vulnerability was found in Tenda O5 1.0.0.8(5017). It has been classified as critical. This affects the function fromSafeSetMacFilter of the file /goform/setMacFilterList. The manipulation of the argument remark/type/time leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-8227 1Tenda 1O1 Firmware Aug 29, 2024 Aug 28, 2024 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability was found in Tenda O1 1.0.0.7(10648) and classified as critical. Affected by this issue is the function fromDhcpSetSer of the file /goform/DhcpSetSer. The manipulation of the argument dhcpStartIp/dhcpEndI...Show more A vulnerability was found in Tenda O1 1.0.0.7(10648) and classified as critical. Affected by this issue is the function fromDhcpSetSer of the file /goform/DhcpSetSer. The manipulation of the argument dhcpStartIp/dhcpEndIp/dhcpGw/dhcpMask/dhcpLeaseTime/dhcpDns1/dhcpDns2 leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-8226 1Tenda 1O1 Firmware Aug 29, 2024 Aug 28, 2024 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability has been found in Tenda O1 1.0.0.7(10648) and classified as critical. Affected by this vulnerability is the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads...Show more A vulnerability has been found in Tenda O1 1.0.0.7(10648) and classified as critical. Affected by this vulnerability is the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-8225 1Tenda 1G3 Firmware Aug 29, 2024 Aug 27, 2024 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability, which was classified as critical, was found in Tenda G3 15.11.0.20. Affected is the function formSetSysTime of the file /goform/SetSysTimeCfg. The manipulation of the argument sysTimePolicy leads to stac...Show more A vulnerability, which was classified as critical, was found in Tenda G3 15.11.0.20. Affected is the function formSetSysTime of the file /goform/SetSysTimeCfg. The manipulation of the argument sysTimePolicy leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-44557 1Tenda 1Ax1806 Firmware Aug 27, 2024 Aug 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function setIptvInfo.
CVE-2024-44555 1Tenda 1Ax1806 Firmware Aug 27, 2024 Aug 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function setIptvInfo.
CVE-2024-44553 1Tenda 1Ax1806 Firmware Aug 27, 2024 Aug 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function formGetIptv.
CVE-2024-44552 1Tenda 1Ax1806 Firmware Mar 18, 2025 Aug 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function formGetIptv.
CVE-2024-44551 1Tenda 1Ax1806 Firmware Mar 26, 2025 Aug 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function formGetIptv.
CVE-2024-44550 1Tenda 1Ax1806 Firmware Aug 27, 2024 Aug 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function formGetIptv.
CVE-2024-44549 1Tenda 1Ax1806 Firmware Aug 27, 2024 Aug 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the function formGetIptv.
CVE-2024-44558 1Tenda 1Ax1806 Firmware Aug 27, 2024 Aug 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function setIptvInfo.
CVE-2024-44556 1Tenda 1Ax1806 Firmware Aug 27, 2024 Aug 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function setIptvInfo.
CVE-2024-44565 1Tenda 1Ax1806 Firmware Aug 27, 2024 Aug 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX1806 v1.0.0.1 contains a stack overflow via the serverName parameter in the function form_fast_setting_internet_set.
CVE-2024-44563 1Tenda 1Ax1806 Firmware Aug 27, 2024 Aug 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the function setIptvInfo.
CVE-2024-44390 1Tenda 1Fh1206 Firmware Dec 13, 2024 Aug 23, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Tenda FH1206 V1.2.0.8(8155)_EN contains a Buffer Overflow vulnerability via the function formWrlsafeset.
CVE-2024-44387 1Tenda 1Fh1206 Firmware Dec 13, 2024 Aug 23, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Tenda FH1206 V1.2.0.8(8155)_EN contains a Buffer Overflow vulnerability via the functino formWrlExtraGet.
CVE-2024-44386 1Tenda 1Fh1206 Firmware Apr 4, 2025 Aug 23, 2024 N/A· v4 7.3 HIGH· v3 N/A· v2 Tenda FH1206 V1.2.0.8(8155)_EN contains a Buffer Overflow vulnerability via the function fromSetIpBind.
CVE-2024-42634 1Tenda 1Ac9 Firmware Apr 11, 2025 Aug 16, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A Command Injection vulnerability exists in formWriteFacMac of the httpd binary in Tenda AC9 v15.03.06.42. As a result, attacker can execute OS commands with root privileges.

Previous 1...394041...92 Next