Vulnerabilities > Tenda > Ac1206 Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-08-25 CVE-2022-37810 OS Command Injection vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a command injection vulnerability via the mac parameter in the function formWriteFacMac.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2022-08-25 CVE-2022-37811 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the startIp parameter in the function formSetPPTPServer.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37812 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the firewallEn parameter in the function formSetFirewallCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37813 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromSetSysTime.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37814 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain multiple stack overflows via the deviceMac and the device_id parameters in the function addWifiMacFilter.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37815 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the PPPOEPassword parameter in the function formQuickIndex.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37816 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromSetIpMacBind.
network
low complexity
tenda CWE-787
critical
 9.8
9.8