Tendacn

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-29032 1Tendacn 1Ac9 Firmware Apr 3, 2025 Mar 14, 2025 N/A· v4 5.9 MEDIUM· v3 N/A· v2 Tenda AC9 v15.03.05.19(6318) was discovered to contain a buffer overflow via the formWifiWpsOOB function.
CVE-2024-50854 1Tendacn 1G3 Firmware Mar 14, 2025 Nov 13, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Tenda G3 v3.0 v15.11.0.20 was discovered to contain a stack overflow via the formSetPortMapping function.
CVE-2024-50853 1Tendacn 1G3 Firmware Nov 21, 2024 Nov 13, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Tenda G3 v3.0 v15.11.0.20 was discovered to contain a command injection vulnerability via the formSetDebugCfg function.
CVE-2024-50852 1Tendacn 1G3 Firmware Nov 21, 2024 Nov 13, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Tenda G3 v3.0 v15.11.0.20 was discovered to contain a command injection vulnerability via the formSetUSBPartitionUmount function.
CVE-2024-46628 1Tendacn 1G3 Firmware Oct 4, 2024 Sep 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda G3 Router firmware v15.03.05.05 was discovered to contain a remote code execution (RCE) vulnerability via the usbPartitionName parameter in the formSetUSBPartitionUmount function.
CVE-2024-8224 1Tendacn 1G3 Firmware Dec 13, 2024 Aug 27, 2024 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability, which was classified as critical, has been found in Tenda G3 15.11.0.20. This issue affects the function formSetDebugCfg of the file /goform/setDebugCfg. The manipulation of the argument enable/level/mod...Show more A vulnerability, which was classified as critical, has been found in Tenda G3 15.11.0.20. This issue affects the function formSetDebugCfg of the file /goform/setDebugCfg. The manipulation of the argument enable/level/module leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-42954 1Tendacn 1Fh1201 Firmware Aug 16, 2024 Aug 15, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the fromwebExcptypemanFilter function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafte...Show more Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the fromwebExcptypemanFilter function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.Show less
CVE-2024-42953 1Tendacn 1Fh1201 Firmware Aug 16, 2024 Aug 15, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the PPW parameter in the fromWizardHandle function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST re...Show more Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the PPW parameter in the fromWizardHandle function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.Show less
CVE-2024-42949 1Tendacn 1Fh1201 Firmware Aug 16, 2024 Aug 15, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the qos parameter in the fromqossetting function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST requ...Show more Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the qos parameter in the fromqossetting function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.Show less
CVE-2024-42945 1Tendacn 1Fh1201 Firmware Aug 16, 2024 Aug 15, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the fromAddressNat function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST req...Show more Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the fromAddressNat function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.Show less
CVE-2024-42942 1Tendacn 1Fh1201 Firmware Aug 16, 2024 Aug 15, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the frmL7ImForm function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST reques...Show more Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the frmL7ImForm function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.Show less
CVE-2024-7581 1Tendacn 1A301 Firmware Aug 7, 2024 Aug 7, 2024 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability classified as critical has been found in Tenda A301 15.13.08.12. This affects the function formWifiBasicSet of the file /goform/WifiBasicSet. The manipulation of the argument security leads to stack-based...Show more A vulnerability classified as critical has been found in Tenda A301 15.13.08.12. This affects the function formWifiBasicSet of the file /goform/WifiBasicSet. The manipulation of the argument security leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-41473 1Tendacn 1Fh1201 Firmware Nov 21, 2024 Jul 25, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the mac parameter at ip/goform/WriteFacMac
CVE-2024-41468 1Tendacn 1Fh1201 Firmware Nov 21, 2024 Jul 25, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the cmdinput parameter at /goform/exeCommand
CVE-2024-41466 1Tendacn 1Fh1201 Firmware Nov 21, 2024 Jul 24, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/NatStaticSetting.
CVE-2024-41465 1Tendacn 1Fh1201 Firmware Nov 21, 2024 Jul 24, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter at ip/goform/setcfm.
CVE-2024-41464 1Tendacn 1Fh1201 Firmware Nov 21, 2024 Jul 24, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/RouteStatic
CVE-2024-41463 1Tendacn 1Fh1201 Firmware Nov 21, 2024 Jul 24, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter at ip/goform/addressNat.
CVE-2024-41462 1Tendacn 1Fh1201 Firmware Nov 21, 2024 Jul 24, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/DhcpListClient.
CVE-2024-41461 1Tendacn 1Fh1201 Firmware Nov 21, 2024 Jul 24, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the list1 parameter at ip/goform/DhcpListClient.

12 3 4 5...8 Next