Vulnerabilities > Tenda > Ac1206 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-07-10 CVE-2023-37711 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware and Ac1206 Firmware
Tenda AC1206 V15.03.06.23 and AC10 V15.03.06.47 were discovered to contain a stack overflow in the deviceId parameter in the saveParentControlInfo function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-07-10 CVE-2023-37710 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware and Ac1206 Firmware
Tenda AC1206 V15.03.06.23 and AC10 V15.03.06.47 were discovered to contain a stack overflow in the wpapsk_crypto parameter in the fromSetWirelessRepeat function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37816 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromSetIpMacBind.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37815 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the PPPOEPassword parameter in the function formQuickIndex.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37814 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain multiple stack overflows via the deviceMac and the device_id parameters in the function addWifiMacFilter.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37813 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromSetSysTime.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37812 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the firewallEn parameter in the function formSetFirewallCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37811 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the startIp parameter in the function formSetPPTPServer.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37810 OS Command Injection vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a command injection vulnerability via the mac parameter in the function formWriteFacMac.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2022-08-25 CVE-2022-37809 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the speed_dir parameter in the function formSetSpeedWan.
network
low complexity
tenda CWE-787
critical
 9.8
9.8