Vulnerabilities > Tenda

DATE CVE VULNERABILITY TITLE RISK
2022-07-07 CVE-2022-32054 Code Injection vulnerability in Tenda Ac10 Firmware 15.03.06.26
Tenda AC10 US_AC10V1.0RTL_V15.03.06.26_multi_TD01 was discovered to contain a remote code execution (RCE) vulnerability via the lanIp parameter.
network
low complexity
tenda CWE-94
critical
10.0
2022-07-06 CVE-2022-34595 Command Injection vulnerability in Tenda Ax1803 Firmware 1.0.0.12890
Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection vulnerability via the function setipv6status.
network
low complexity
tenda CWE-77
7.5
2022-07-06 CVE-2022-34596 Command Injection vulnerability in Tenda Ax1803 Firmware 1.0.0.12890
Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection vulnerability via the function WanParameterSetting.
network
low complexity
tenda CWE-77
7.5
2022-07-06 CVE-2022-34597 Command Injection vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability via the function WanParameterSetting.
network
low complexity
tenda CWE-77
7.5
2022-07-01 CVE-2022-32030 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function formSetQosBand.
network
low complexity
tenda CWE-119
7.8
2022-07-01 CVE-2022-32031 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetRouteStatic.
network
low complexity
tenda CWE-119
7.8
2022-07-01 CVE-2022-32032 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the deviceList parameter in the function formAddMacfilterRule.
network
low complexity
tenda CWE-787
critical
10.0
2022-07-01 CVE-2022-32033 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the function formSetVirtualSer.
network
low complexity
tenda CWE-119
7.8
2022-07-01 CVE-2022-32037 Allocation of Resources Without Limits or Throttling vulnerability in Tenda M3 Firmware 1.0.0.12
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAPCfg.
network
low complexity
tenda CWE-770
5.0
2022-07-01 CVE-2022-32039 Allocation of Resources Without Limits or Throttling vulnerability in Tenda M3 Firmware 1.0.0.12
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the listN parameter in the function fromDhcpListClient.
network
low complexity
tenda CWE-770
5.0