Vulnerabilities > Tenda > Ax1806 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-11-07 CVE-2023-47455 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 V1.0.0.1 contains a heap overflow vulnerability in setSchedWifi function, in which the src and v12 are directly obtained from http request parameter schedStartTime and schedEndTime without checking their size.
network
low complexity
tenda CWE-787
critical
9.1
2023-11-07 CVE-2023-47456 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 V1.0.0.1 contains a stack overflow vulnerability in function sub_455D4, called by function fromSetWirelessRepeat.
network
low complexity
tenda CWE-787
critical
9.1
2022-07-06 CVE-2022-34597 OS Command Injection vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability via the function WanParameterSetting.
network
low complexity
tenda CWE-78
critical
9.8
2022-07-01 CVE-2022-32030 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function formSetQosBand.
network
low complexity
tenda CWE-787
7.5
2022-07-01 CVE-2022-32031 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetRouteStatic.
network
low complexity
tenda CWE-787
7.5
2022-07-01 CVE-2022-32032 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the deviceList parameter in the function formAddMacfilterRule.
network
low complexity
tenda CWE-787
critical
10.0
2022-07-01 CVE-2022-32033 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the function formSetVirtualSer.
network
low complexity
tenda CWE-787
7.5
2022-05-06 CVE-2022-28969 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the shareSpeed parameter in the function fromSetWifiGusetBasic.
network
low complexity
tenda CWE-787
7.8
2022-05-06 CVE-2022-28970 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a heap overflow via the mac parameter in the function GetParentControlInfo.
network
low complexity
tenda CWE-787
7.8
2022-05-06 CVE-2022-28971 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetIpMacBind.
network
low complexity
tenda CWE-787
7.8