Vulnerabilities > Tenda > AC5 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-04-07 CVE-2023-25217 Out-of-bounds Write vulnerability in Tenda AC5 Firmware 15.03.06.28
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the formWifiBasicSet function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-25216 Out-of-bounds Write vulnerability in Tenda AC5 Firmware 15.03.06.28
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the formSetFirewallCfg function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-25215 Out-of-bounds Write vulnerability in Tenda AC5 Firmware 15.03.06.28
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the saveParentControlInfo function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-25214 Out-of-bounds Write vulnerability in Tenda AC5 Firmware 15.03.06.28
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the setSchedWifi function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-25213 Out-of-bounds Write vulnerability in Tenda AC5 Firmware 15.03.06.28
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the check_param_changed function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-25212 Out-of-bounds Write vulnerability in Tenda AC5 Firmware 15.03.06.28
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromSetWirelessRepeat function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-25211 Out-of-bounds Write vulnerability in Tenda AC5 Firmware 15.03.06.28
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the R7WebsSecurityHandler function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-25210 Out-of-bounds Write vulnerability in Tenda AC5 Firmware 15.03.06.28
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromSetSysTime function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-01-28 CVE-2021-44971 Incorrect Comparison vulnerability in Tenda Ac15 Firmware and AC5 Firmware
Multiple Tenda devices are affected by authentication bypass, such as AC15V1.0 Firmware V15.03.05.20_multi?AC5V1.0 Firmware V15.03.06.48_multi and so on.
network
low complexity
tenda CWE-697
critical
 9.8
9.8