Vulnerabilities > Tenda > Ax1803 Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-08-25 CVE-2022-37818 Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.1
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the list parameter at the function formSetQosBand.
local
low complexity
tenda CWE-787
7.8
7.8
2022-08-25 CVE-2022-37819 Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.1
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the timezone parameter in the function fromSetSysTime.
local
low complexity
tenda CWE-787
7.8
7.8
2022-08-25 CVE-2022-37820 Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.1
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the ddnsEn parameter in the function formSetSysToolDDNS.
local
low complexity
tenda CWE-787
7.8
7.8
2022-08-25 CVE-2022-37821 Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.1
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the ProvinceCode parameter in the function formSetProvince.
local
low complexity
tenda CWE-787
7.8
7.8
2022-08-25 CVE-2022-37822 Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.1
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the function fromSetRouteStatic.
local
low complexity
tenda CWE-787
7.8
7.8
2022-08-25 CVE-2022-37823 Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.1
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function formSetVirtualSer.
local
low complexity
tenda CWE-787
7.8
7.8
2022-08-25 CVE-2022-37824 Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.1
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the shareSpeed parameter in the function fromSetWifiGusetBasic.
local
low complexity
tenda CWE-787
7.8
7.8
2022-07-06 CVE-2022-34595 OS Command Injection vulnerability in Tenda Ax1803 Firmware 1.0.0.12890
Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection vulnerability via the function setipv6status.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2022-07-06 CVE-2022-34596 OS Command Injection vulnerability in Tenda Ax1803 Firmware 1.0.0.12890
Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection vulnerability via the function WanParameterSetting.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2022-05-11 CVE-2022-30040 Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.12890
Tenda AX1803 v1.0.0.1_2890 is vulnerable to Buffer Overflow.
network
low complexity
tenda CWE-787
7.5
7.5