Vulnerabilities > Tenda > AC6 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-06-26 CVE-2022-40010 Cross-site Scripting vulnerability in Tenda AC6 Firmware 15.03.06.50Multi
Tenda AC6 AC1200 Smart Dual-Band WiFi Router 15.03.06.50_multi was discovered to contain a cross-site scripting (XSS) vulnerability via the deviceId parameter in the Parental Control module.
network
low complexity
tenda CWE-79
5.4
5.4
2023-05-27 CVE-2023-2923 Out-of-bounds Write vulnerability in Tenda AC6 Firmware Usac6V1.0Brv15.03.05.19
A vulnerability classified as critical was found in Tenda AC6 US_AC6V1.0BR_V15.03.05.19.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-04-04 CVE-2023-26976 Out-of-bounds Write vulnerability in Tenda AC6 Firmware 15.03.05.09
Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the ssid parameter in the form_fast_setting_wifi_set function.
network
low complexity
tenda CWE-787
7.5
7.5
2022-12-02 CVE-2022-45641 Classic Buffer Overflow vulnerability in Tenda AC6 Firmware 15.03.05.19
Tenda AC6V1.0 V15.03.05.19 is vulnerable to Buffer Overflow via formSetMacFilterCfg.
network
low complexity
tenda CWE-120
7.5
7.5
2022-12-02 CVE-2022-45673 Cross-Site Request Forgery (CSRF) vulnerability in Tenda AC6 Firmware 15.03.05.19
Tenda AC6V1.0 V15.03.05.19 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolRestoreSet.
network
low complexity
tenda CWE-352
6.5
6.5
2022-12-02 CVE-2022-45674 Cross-Site Request Forgery (CSRF) vulnerability in Tenda AC6 Firmware 15.03.05.19
Tenda AC6V1.0 V15.03.05.19 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.
network
low complexity
tenda CWE-352
6.5
6.5
2022-12-01 CVE-2022-45640 Out-of-bounds Write vulnerability in Tenda AC6 Firmware 15.03.05.19
Tenda Tenda AC6V1.0 V15.03.05.19 is affected by buffer overflow.
network
low complexity
tenda CWE-787
7.5
7.5
2022-10-13 CVE-2022-41485 Classic Buffer Overflow vulnerability in Tenda AC6 Firmware and Ac6V2.0 Firmware
Tenda AC1200 US_AC6V2.0RTL_V15.03.06.51_multi_TDE01 was discovered to contain a buffer overflow in the 0x47ce00 function.
network
low complexity
tenda CWE-120
7.5
7.5
2022-03-18 CVE-2022-25445 Out-of-bounds Write vulnerability in Tenda AC6 Firmware 15.03.05.09
Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the time parameter in the PowerSaveSet function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-03-18 CVE-2022-25446 Out-of-bounds Write vulnerability in Tenda AC6 Firmware 15.03.05.09
Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the schedstarttime parameter in the openSchedWifi function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8