Tenda

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-4111 1Tenda 1Tx9 Pro Firmware Jan 27, 2025 Apr 24, 2024 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability was found in Tenda TX9 22.03.02.10. It has been rated as critical. Affected by this issue is the function sub_42BD7C of the file /goform/SetLEDCfg. The manipulation of the argument time leads to stack-bas...Show more A vulnerability was found in Tenda TX9 22.03.02.10. It has been rated as critical. Affected by this issue is the function sub_42BD7C of the file /goform/SetLEDCfg. The manipulation of the argument time leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-261854 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-4066 1Tenda 1Ac8 Firmware Jan 21, 2025 Apr 23, 2024 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability classified as critical has been found in Tenda AC8 16.03.34.09. Affected is the function fromAdvSetMacMtuWan of the file /goform/AdvSetMacMtuWan. The manipulation of the argument wanMTU/wanSpeed/cloneType...Show more A vulnerability classified as critical has been found in Tenda AC8 16.03.34.09. Affected is the function fromAdvSetMacMtuWan of the file /goform/AdvSetMacMtuWan. The manipulation of the argument wanMTU/wanSpeed/cloneType/mac/serviceName/serverName leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-261792. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-4065 1Tenda 1Ac8 Firmware Jan 21, 2025 Apr 23, 2024 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability was found in Tenda AC8 16.03.34.09. It has been rated as critical. This issue affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads...Show more A vulnerability was found in Tenda AC8 16.03.34.09. It has been rated as critical. This issue affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-261791. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-4064 1Tenda 1Ac8 Firmware Jan 21, 2025 Apr 23, 2024 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability was found in Tenda AC8 16.03.34.09. It has been declared as critical. This vulnerability affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument passwo...Show more A vulnerability was found in Tenda AC8 16.03.34.09. It has been declared as critical. This vulnerability affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-261790 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-33217 1Tenda 1Fh1206 Firmware Mar 17, 2025 Apr 23, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter in ip/goform/addressNat.
CVE-2024-33215 1Tenda 1Fh1206 Firmware Mar 17, 2025 Apr 23, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/addressNat.
CVE-2024-33214 1Tenda 1Fh1206 Firmware Mar 17, 2025 Apr 23, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter in ip/goform/RouteStatic.
CVE-2024-33213 1Tenda 1Fh1206 Firmware Mar 17, 2025 Apr 23, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/RouteStatic.
CVE-2024-33212 1Tenda 1Fh1206 Firmware Mar 17, 2025 Apr 23, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter in ip/goform/setcfm.
CVE-2024-33211 1Tenda 1Fh1206 Firmware Mar 17, 2025 Apr 23, 2024 N/A· v4 7.3 HIGH· v3 N/A· v2 Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter in ip/goform/QuickIndex.
CVE-2024-4020 1Tenda 1Fh1206 Firmware Mar 6, 2025 Apr 20, 2024 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability was found in Tenda FH1206 1.2.0.8(8155) and classified as critical. This issue affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the argument entrys leads to buffer o...Show more A vulnerability was found in Tenda FH1206 1.2.0.8(8155) and classified as critical. This issue affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the argument entrys leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-261671. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-32320 1Tenda 1Ac500 Firmware Mar 17, 2025 Apr 17, 2024 N/A· v4 5.9 MEDIUM· v3 N/A· v2 Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the timeZone parameter in the formSetTimeZone function.
CVE-2024-32318 1Tenda 1Ac500 Firmware Mar 17, 2025 Apr 17, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the vlan parameter in the formSetVlanInfo function.
CVE-2024-32317 1Tenda 1Ac10 Firmware Mar 17, 2025 Apr 17, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AC10 v4.0 V16.03.10.13 and V16.03.10.20 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.
CVE-2024-32316 1Tenda 1Ac500 Firmware Mar 17, 2025 Apr 17, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability in the fromDhcpListClient function.
CVE-2024-32314 1Tenda 1Ac500 Firmware Mar 17, 2025 Apr 17, 2024 N/A· v4 3.8 LOW· v3 N/A· v2 Tenda AC500 V2.0.1.9(1307) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.
CVE-2024-32305 1Tenda 1A18 Firmware Apr 9, 2025 Apr 17, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Tenda A18 v15.03.05.05 firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.
CVE-2024-32303 1Tenda 1Ac15 Firmware Jun 30, 2025 Apr 17, 2024 N/A· v4 8.0 HIGH· v3 N/A· v2 Tenda AC15 v15.03.20_multi, v15.03.05.19, and v15.03.05.18 firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.
CVE-2023-46060 1Tenda 1Ac500 Firmware Apr 9, 2025 Apr 17, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 A Buffer Overflow vulnerability in Tenda AC500 v.2.0.1.9 allows a remote attacker to cause a denial of service via the port parameter at the goform/setVlanInfo component.
CVE-2024-32315 1Tenda 1Fh1202 Firmware Apr 9, 2025 Apr 17, 2024 N/A· v4 4.7 MEDIUM· v3 N/A· v2 Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.

Previous 1...464748...92 Next