← Back

Tendacn

tendacn

146 CVEs • 48 products

Products (48)

Click to collapse
Toggle
G3 Firmware
g3_firmware
28 CVEs
Ac6 Firmware
ac6_firmware
27 CVEs
G1 Firmware
g1_firmware
23 CVEs
Ac10u Firmware
ac10u_firmware
23 CVEs
Ac15 Firmware
ac15_firmware
20 CVEs
Ac18 Firmware
ac18_firmware
18 CVEs
Ac9 Firmware
ac9_firmware
17 CVEs
Fh1201 Firmware
fh1201_firmware
15 CVEs
Ac10 Firmware
ac10_firmware
7 CVEs
Pa6 Firmware
pa6_firmware
4 CVEs
Ac23 Ac2100 Firmware
ac23_ac2100_firmware
4 CVEs
A301 Firmware
a301_firmware
4 CVEs
F1200 Firmware
f1200_firmware
2 CVEs
Fh1202 Firmware
fh1202_firmware
2 CVEs
F1202 Firmware
f1202_firmware
2 CVEs
Ac7 Firmware
ac7_firmware
2 CVEs
Ac9v1.0 Firmware
ac9v1.0_firmware
2 CVEs
Ac1200 Firmware
ac1200_firmware
2 CVEs
D152 Firmware
d152_firmware
1 CVE
Adsl Firmware
adsl_firmware
1 CVE
N301 Firmware
n301_firmware
1 CVE
G0 Firmware
g0_firmware
1 CVE
Cp3 Firmware
cp3_firmware
1 CVE
I29 Firmware
i29_firmware
1 CVE
F1200
f1200
0 CVEs
Fh1202
fh1202
0 CVEs
F1202
f1202
0 CVEs
Ac15
ac15
0 CVEs
Ac7
ac7
0 CVEs
Ac9
ac9
0 CVEs
Ac10
ac10
0 CVEs
Ac18
ac18
0 CVEs
D152
d152
0 CVEs
Adsl
adsl
0 CVEs
N301
n301
0 CVEs
Ac1200 Smart Dual Band Gigabit Wifi
ac1200_smart_dual-band_gigabit_wifi
0 CVEs
Ac6
ac6
0 CVEs
Pa6
pa6
0 CVEs
Ac1200
ac1200
0 CVEs
G0
g0
0 CVEs
G1
g1
0 CVEs
G3
g3
0 CVEs
Ac10u
ac10u
0 CVEs
Ac23 Ac2100
ac23_ac2100
0 CVEs
Cp3
cp3
0 CVEs
A301
a301
0 CVEs
I29
i29
0 CVEs
Fh1201
fh1201
0 CVEs

CVEs (146)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-28094
1Tendacn
1Ac1200 Firmware
Nov 21, 2024
Dec 28, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
On Tenda AC1200 (Model AC6) 15.03.06.51_multi devices, the default settings for the router speed test contain links to download malware named elive or CNKI E-Learning.
CVE-2020-28093
1Tendacn
1Ac1200 Firmware
Nov 21, 2024
Dec 28, 2020
N/A· v4
7.2 HIGH· v3
6.5 MEDIUM· v2
On Tenda AC1200 (Model AC6) 15.03.06.51_multi devices, admin, support, user, and nobody have a password of 1234.
CVE-2020-24987
1Tendacn
1Ac18 Firmware
Nov 21, 2024
Sep 4, 2020
N/A· v4
9.8 CRITICAL· v3
6.8 MEDIUM· v2
Tenda AC18 Router through V15.03.05.05_EN and through V15.03.05.19(6318) CN devices could cause a remote code execution due to incorrect authentication handling of vulnerable logincheck() function in /usr/lib/lua/ngx_aut...Show more
Tenda AC18 Router through V15.03.05.05_EN and through V15.03.05.19(6318) CN devices could cause a remote code execution due to incorrect authentication handling of vulnerable logincheck() function in /usr/lib/lua/ngx_authserver/ngx_wdas.lua file if the administrator UI Interface is set to "radius".Show less
CVE-2019-19506
1Tendacn
1Pa6 Firmware
Nov 21, 2024
Jun 25, 2020
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 is vulnerable to a denial of service, caused by an error in the "homeplugd" process. By sending a specially crafted UDP packet, an attacker could exploit this vulnerability to...Show more
Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 is vulnerable to a denial of service, caused by an error in the "homeplugd" process. By sending a specially crafted UDP packet, an attacker could exploit this vulnerability to cause the device to reboot.Show less
CVE-2019-19505
1Tendacn
1Pa6 Firmware
Nov 21, 2024
Jun 25, 2020
N/A· v4
8.8 HIGH· v3
9.0 HIGH· v2
Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the "Wireless" section in the web-UI. By sending a specially crafted hostname, a remote at...Show more
Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the "Wireless" section in the web-UI. By sending a specially crafted hostname, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.Show less
CVE-2019-16213
1Tendacn
1Pa6 Firmware
Nov 21, 2024
Jun 25, 2020
N/A· v4
8.8 HIGH· v3
9.0 HIGH· v2
Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially crafted string, an attacker could modify the device name of an a...Show more
Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially crafted string, an attacker could modify the device name of an attached PLC adapter to inject and execute arbitrary commands on the system with root privileges.Show less
CVE-2020-13394
1Tendacn
4Ac15 Firmware
Ac18 FirmwareAc6 Firmware+1 more
Nov 21, 2024
May 22, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffe...Show more
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the /goform/SetNetControlList list parameter for a POST request, a value is directly used in a strcpy to a local variable placed on the stack, which overwrites the return address of a function. An attacker can construct a payload to carry out arbitrary code execution attacks.Show less
CVE-2020-13393
1Tendacn
4Ac15 Firmware
Ac18 FirmwareAc6 Firmware+1 more
Nov 21, 2024
May 22, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffe...Show more
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the /goform/saveParentControlInfo deviceId and time parameters for a POST request, a value is directly used in a strcpy to a local variable placed on the stack, which overwrites the return address of a function. An attacker can construct a payload to carry out arbitrary code execution attacks.Show less
CVE-2020-13392
1Tendacn
4Ac15 Firmware
Ac18 FirmwareAc6 Firmware+1 more
Nov 21, 2024
May 22, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffe...Show more
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the /goform/setcfm funcpara1 parameter for a POST request, a value is directly used in a sprintf to a local variable placed on the stack, which overwrites the return address of a function. An attacker can construct a payload to carry out arbitrary code execution attacks.Show less
CVE-2020-13391
1Tendacn
4Ac15 Firmware
Ac18 FirmwareAc6 Firmware+1 more
Nov 21, 2024
May 22, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffe...Show more
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the /goform/SetSpeedWan speed_dir parameter for a POST request, a value is directly used in a sprintf to a local variable placed on the stack, which overwrites the return address of a function. An attacker can construct a payload to carry out arbitrary code execution attacks.Show less
CVE-2020-13390
1Tendacn
4Ac15 Firmware
Ac18 FirmwareAc6 Firmware+1 more
Nov 21, 2024
May 22, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffe...Show more
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the /goform/addressNat entrys and mitInterface parameters for a POST request, a value is directly used in a sprintf to a local variable placed on the stack, which overwrites the return address of a function. An attacker can construct a payload to carry out arbitrary code execution attacks.Show less
CVE-2020-13389
1Tendacn
4Ac15 Firmware
Ac18 FirmwareAc6 Firmware+1 more
Nov 21, 2024
May 22, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffe...Show more
An issue was discovered on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the /goform/openSchedWifi schedStartTime and schedEndTime parameters for a POST request, a value is directly used in a strcpy to a local variable placed on the stack, which overwrites the return address of a function. An attacker can construct a payload to carry out arbitrary code execution attacks.Show less
CVE-2019-5072
1Tendacn
1Ac9v1.0 Firmware
Nov 21, 2024
Nov 21, 2019
N/A· v4
7.8 HIGH· v3
4.6 MEDIUM· v2
An exploitable command injection vulnerability exists in the /goform/WanParameterSetting functionality of Tenda AC9 Router AC1200 Smart Dual-Band Gigabit WiFi Route (AC9V1.0 Firmware V15.03.05.16multiTRU). A specially cr...Show more
An exploitable command injection vulnerability exists in the /goform/WanParameterSetting functionality of Tenda AC9 Router AC1200 Smart Dual-Band Gigabit WiFi Route (AC9V1.0 Firmware V15.03.05.16multiTRU). A specially crafted HTTP POST request can cause a command injection in the DNS2 post parameters, resulting in code execution. An attacker can send HTTP POST request with command to trigger this vulnerability.Show less
CVE-2019-5071
1Tendacn
1Ac9v1.0 Firmware
Nov 21, 2024
Nov 21, 2019
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
An exploitable command injection vulnerability exists in the /goform/WanParameterSetting functionality of Tenda AC9 Router AC1200 Smart Dual-Band Gigabit WiFi Route (AC9V1.0 Firmware V15.03.05.16multiTRU). A specially cr...Show more
An exploitable command injection vulnerability exists in the /goform/WanParameterSetting functionality of Tenda AC9 Router AC1200 Smart Dual-Band Gigabit WiFi Route (AC9V1.0 Firmware V15.03.05.16multiTRU). A specially crafted HTTP POST request can cause a command injection in the DNS1 post parameters, resulting in code execution. An attacker can send HTTP POST request with command to trigger this vulnerability.Show less
CVE-2019-16412
1Tendacn
1N301 Firmware
Nov 21, 2024
Sep 19, 2019
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
In goform/setSysTools on Tenda N301 wireless routers, attackers can trigger a device crash via a zero wanMTU value. (Prohibition of this zero value is only enforced within the GUI.)
CVE-2018-20373
1Tendacn
1Adsl Firmware
Nov 21, 2024
Dec 23, 2018
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
Tenda ADSL modem routers 1.0.1 allow XSS via the hostname of a DHCP client.
CVE-2018-16334
1Tendacn
2Ac10 Firmware
Ac9 Firmware
Nov 21, 2024
Sep 2, 2018
N/A· v4
8.8 HIGH· v3
9.0 HIGH· v2
An issue was discovered on Tenda AC9 V15.03.05.19(6318)_CN and AC10 V15.03.06.23_CN devices. The mac parameter in a POST request is used directly in a doSystemCmd call, causing OS command injection.
CVE-2018-16333
1Tendacn
5Ac10 Firmware
Ac15 FirmwareAc18 Firmware+2 more
Nov 21, 2024
Sep 2, 2018
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a buffer overflow vulnerability in the router'...Show more
An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a buffer overflow vulnerability in the router's web server. While processing the ssid parameter for a POST request, the value is directly used in a sprintf call to a local variable placed on the stack, which overrides the return address of the function, causing a buffer overflow.Show less
CVE-2018-14497
1Tendacn
1D152 Firmware
Nov 21, 2024
Aug 4, 2018
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
Tenda D152 ADSL routers allow XSS via a crafted SSID.
CVE-2018-14492
1Tendacn
5Ac10 Firmware
Ac15 FirmwareAc18 Firmware+2 more
Nov 21, 2024
Jul 21, 2018
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Tenda AC7 through V15.03.06.44_CN, AC9 through V15.03.05.19(6318)_CN, and AC10 through V15.03.06.23_CN devices have a Stack-based Buffer Overflow via a long limitSpeed or limitSpeedup parameter to an unspecified /goform...Show more
Tenda AC7 through V15.03.06.44_CN, AC9 through V15.03.05.19(6318)_CN, and AC10 through V15.03.06.23_CN devices have a Stack-based Buffer Overflow via a long limitSpeed or limitSpeedup parameter to an unspecified /goform URI.Show less