Vulnerabilities > Tenda > Ax12 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-08-25 CVE-2022-37292 Out-of-bounds Write vulnerability in Tenda Ax12 Firmware 22.03.01.21Cn
Tenda AX12 V22.03.01.21_CN is vulnerable to Buffer Overflow.
local
low complexity
tenda CWE-787
5.5
5.5
2022-04-25 CVE-2022-27374 Cross-Site Request Forgery (CSRF) vulnerability in Tenda Ax12 Firmware 22.03.01.21Cn
Tenda AX12 V22.03.01.21_CN was discovered to contain a Cross-Site Request Forgery (CSRF) via the function sub_42E328 at /goform/SysToolReboot.
network
low complexity
tenda CWE-352
6.5
6.5
2022-04-25 CVE-2022-27375 Cross-Site Request Forgery (CSRF) vulnerability in Tenda Ax12 Firmware 22.03.01.21Cn
Tenda AX12 V22.03.01.21_CN was discovered to contain a Cross-Site Request Forgery (CSRF) via the function sub_422168 at /goform/WifiExtraSet.
network
low complexity
tenda CWE-352
6.5
6.5