Vulnerabilities > Tenda > Ac1206 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-07-10 CVE-2023-37710 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware and Ac1206 Firmware
Tenda AC1206 V15.03.06.23 and AC10 V15.03.06.47 were discovered to contain a stack overflow in the wpapsk_crypto parameter in the fromSetWirelessRepeat function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-07-10 CVE-2023-37711 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware and Ac1206 Firmware
Tenda AC1206 V15.03.06.23 and AC10 V15.03.06.47 were discovered to contain a stack overflow in the deviceId parameter in the saveParentControlInfo function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-07-10 CVE-2023-37712 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware, F1202 Firmware and Fh1202 Firmware
Tenda AC1206 V15.03.06.23, F1202 V1.2.0.20(408), and FH1202 V1.2.0.20(408) were discovered to contain a stack overflow in the page parameter in the fromSetIpBind function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-10-12 CVE-2022-42077 Cross-Site Request Forgery (CSRF) vulnerability in Tenda Ac1206 Firmware 15.03.06.23Multitd01
Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.
network
low complexity
tenda CWE-352
6.5
6.5
2022-10-12 CVE-2022-42078 Cross-Site Request Forgery (CSRF) vulnerability in Tenda Ac1206 Firmware 15.03.06.23Multitd01
Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolRestoreSet.
network
low complexity
tenda CWE-352
6.5
6.5
2022-10-12 CVE-2022-42079 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23Multitd01
Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 was discovered to contain a stack overflow via the function formWifiBasicSet.
network
low complexity
tenda CWE-787
7.5
7.5
2022-10-12 CVE-2022-42080 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23Multitd01
Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 was discovered to contain a heap overflow via sched_start_time parameter.
network
low complexity
tenda CWE-787
7.5
7.5
2022-10-12 CVE-2022-42081 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23Multitd01
Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 was discovered to contain a stack overflow via sched_end_time parameter.
network
low complexity
tenda CWE-787
7.5
7.5
2022-08-25 CVE-2022-37798 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function formSetVirtualSer.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37799 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter at the function setSmartPowerManagement.
network
low complexity
tenda CWE-787
critical
 9.8
9.8