Filtered by vendor Tenda
Subscribe
Total
1690 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-57578 | 1 Tenda | 2 Ac18, Ac18 Firmware | 2025-03-17 | N/A | 8.8 HIGH |
|
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the funcpara1 parameter in the formSetCfm function.
|
|||||
| CVE-2024-57577 | 1 Tenda | 2 Ac18, Ac18 Firmware | 2025-03-17 | N/A | 5.7 MEDIUM |
|
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the speed_dir parameter in the formSetSpeedWan function.
|
|||||
| CVE-2024-34974 | 1 Tenda | 2 Ac18, Ac18 Firmware | 2025-03-17 | N/A | 8.2 HIGH |
|
Tenda AC18 v15.03.05.19 is vulnerable to Buffer Overflow in the formSetPPTPServer function via the endIp parameter.
|
|||||
| CVE-2024-32314 | 1 Tenda | 2 Ac500, Ac500 Firmware | 2025-03-17 | N/A | 3.8 LOW |
|
Tenda AC500 V2.0.1.9(1307) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.
|
|||||
| CVE-2024-32316 | 1 Tenda | 2 Ac500, Ac500 Firmware | 2025-03-17 | N/A | 6.5 MEDIUM |
|
Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability in the fromDhcpListClient function.
|
|||||
| CVE-2024-32318 | 1 Tenda | 2 Ac500, Ac500 Firmware | 2025-03-17 | N/A | 9.8 CRITICAL |
|
Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the vlan parameter in the formSetVlanInfo function.
|
|||||
| CVE-2024-32320 | 1 Tenda | 2 Ac500, Ac500 Firmware | 2025-03-17 | N/A | 5.9 MEDIUM |
|
Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the timeZone parameter in the formSetTimeZone function.
|
|||||
| CVE-2024-33215 | 1 Tenda | 2 Fh1206, Fh1206 Firmware | 2025-03-17 | N/A | 9.8 CRITICAL |
|
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/addressNat.
|
|||||
| CVE-2024-33214 | 1 Tenda | 2 Fh1206, Fh1206 Firmware | 2025-03-17 | N/A | 7.5 HIGH |
|
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter in ip/goform/RouteStatic.
|
|||||
| CVE-2024-33212 | 1 Tenda | 2 Fh1206, Fh1206 Firmware | 2025-03-17 | N/A | 8.8 HIGH |
|
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter in ip/goform/setcfm.
|
|||||
| CVE-2024-33211 | 1 Tenda | 2 Fh1206, Fh1206 Firmware | 2025-03-17 | N/A | 7.3 HIGH |
|
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter in ip/goform/QuickIndex.
|
|||||
| CVE-2024-33213 | 1 Tenda | 2 Fh1206, Fh1206 Firmware | 2025-03-17 | N/A | 6.5 MEDIUM |
|
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/RouteStatic.
|
|||||
| CVE-2024-33217 | 1 Tenda | 2 Fh1206, Fh1206 Firmware | 2025-03-17 | N/A | 7.5 HIGH |
|
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter in ip/goform/addressNat.
|
|||||
| CVE-2024-48826 | 1 Tenda | 2 Ac7, Ac7 Firmware | 2025-03-17 | N/A | 8.8 HIGH |
|
Tenda AC7 v.15.03.06.44 ate_iwpriv_set has pre-authentication command injection allowing remote attackers to execute arbitrary code.
|
|||||
| CVE-2024-48825 | 1 Tenda | 2 Ac7, Ac7 Firmware | 2025-03-17 | N/A | 8.8 HIGH |
|
Tenda AC7 v.15.03.06.44 ate_ifconfig_set has pre-authentication command injection allowing remote attackers to execute arbitrary code.
|
|||||
| CVE-2024-32301 | 1 Tenda | 2 Ac7, Ac7 Firmware | 2025-03-17 | N/A | 9.8 CRITICAL |
|
Tenda AC7V1.0 v15.03.06.44 firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function.
|
|||||
| CVE-2024-32281 | 1 Tenda | 2 Ac7, Ac7 Firmware | 2025-03-17 | N/A | 8.8 HIGH |
|
Tenda AC7V1.0 v15.03.06.44 firmware contains a command injection vulnerablility in formexeCommand function via the cmdinput parameter.
|
|||||
| CVE-2024-35580 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2025-03-17 | N/A | 9.8 CRITICAL |
|
Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function formSetIptv.
|
|||||
| CVE-2024-35579 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2025-03-17 | N/A | 7.7 HIGH |
|
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function formSetIptv.
|
|||||
| CVE-2024-35578 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2025-03-17 | N/A | 8.0 HIGH |
|
Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function formSetIptv.
|
|||||
| CVE-2024-35576 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2025-03-17 | N/A | 5.2 MEDIUM |
|
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the function formSetIptv.
|
|||||
| CVE-2024-35571 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2025-03-17 | N/A | 9.8 CRITICAL |
|
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function formSetIptv.
|
|||||
| CVE-2025-25675 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2025-03-17 | N/A | 9.8 CRITICAL |
|
Tenda AC10 V1.0 V15.03.06.23 has a command injection vulnerablility located in the formexeCommand function. The str variable receives the cmdinput parameter from a POST request and is later assigned to the cmd_buf variable, which is directly used in the doSystemCmd function, causing an arbitrary command execution.
|
|||||
| CVE-2025-25674 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2025-03-17 | N/A | 9.8 CRITICAL |
|
Tenda AC10 V1.0 V15.03.06.23 is vulnerable to Buffer Overflow in form_fast_setting_wifi_set via the parameter ssid.
|
|||||
| CVE-2024-32317 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2025-03-17 | N/A | 7.5 HIGH |
|
Tenda AC10 v4.0 V16.03.10.13 and V16.03.10.20 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.
|
|||||
| CVE-2024-32306 | 1 Tenda | 2 Ac10u, Ac10u Firmware | 2025-03-17 | N/A | 5.7 MEDIUM |
|
Tenda AC10U v1.0 Firmware v15.03.06.49 has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.
|
|||||
| CVE-2024-30612 | 1 Tenda | 2 Ac10u, Ac10u Firmware | 2025-03-17 | N/A | 8.1 HIGH |
|
Tenda AC10U v15.03.06.48 has a stack overflow vulnerability in the deviceId, limitSpeed, limitSpeedUp parameter from formSetClientState function.
|
|||||
| CVE-2024-25373 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2025-03-17 | N/A | 4.6 MEDIUM |
|
Tenda AC10V4.0 V16.03.10.20 was discovered to contain a stack overflow via the page parameter in the sub_49B384 function.
|
|||||
| CVE-2024-30628 | 1 Tenda | 2 Fh1205, Fh1205 Firmware | 2025-03-14 | N/A | 9.8 CRITICAL |
|
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the page parameter from fromAddressNat function.
|
|||||
| CVE-2024-30632 | 1 Tenda | 2 Fh1205, Fh1205 Firmware | 2025-03-13 | N/A | 6.5 MEDIUM |
|
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the security_5g parameter from formWifiBasicSet function.
|
|||||
| CVE-2024-30633 | 1 Tenda | 2 Fh1205, Fh1205 Firmware | 2025-03-13 | N/A | 6.5 MEDIUM |
|
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the security parameter from the formWifiBasicSet function.
|
|||||
| CVE-2024-30634 | 1 Tenda | 2 F1202, F1202 Firmware | 2025-03-13 | N/A | 8.0 HIGH |
|
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the mitInterface parameter in the fromAddressNat function.
|
|||||
| CVE-2024-30635 | 1 Tenda | 2 F1202, F1202 Firmware | 2025-03-13 | N/A | 9.8 CRITICAL |
|
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability located in the funcpara1 parameter in the formSetCfm function.
|
|||||
| CVE-2024-30636 | 1 Tenda | 2 F1202, F1202 Firmware | 2025-03-13 | N/A | 6.5 MEDIUM |
|
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the PPPOEPassword parameter in the formQuickIndex function.
|
|||||
| CVE-2024-30637 | 1 Tenda | 2 F1202, F1202 Firmware | 2025-03-13 | N/A | 8.8 HIGH |
|
Tenda F1202 v1.2.0.20(408) has a command injection vulnerablility in the formWriteFacMac function in the mac parameter.
|
|||||
| CVE-2024-30638 | 1 Tenda | 2 F1202, F1202 Firmware | 2025-03-13 | N/A | 4.3 MEDIUM |
|
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the entrys parameter in the fromAddressNat function.
|
|||||
| CVE-2024-30639 | 1 Tenda | 2 F1202, F1202 Firmware | 2025-03-13 | N/A | 6.5 MEDIUM |
|
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability in the page parameter of fromAddressNat function.
|
|||||
| CVE-2024-30622 | 1 Tenda | 2 Fh1205, Fh1205 Firmware | 2025-03-13 | N/A | 9.8 CRITICAL |
|
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the mitInterface parameter from fromAddressNat function.
|
|||||
| CVE-2024-30623 | 1 Tenda | 2 Fh1205, Fh1205 Firmware | 2025-03-13 | N/A | 6.5 MEDIUM |
|
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the page parameter from fromDhcpListClient function.
|
|||||
| CVE-2024-30629 | 1 Tenda | 2 Fh1205, Fh1205 Firmware | 2025-03-13 | N/A | 5.7 MEDIUM |
|
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the list1 parameter from fromDhcpListClient function.
|
|||||