Vulnerabilities > Tenda > M3 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-12-26 CVE-2023-51090 Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12(4856)
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formGetWeiXinConfig.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-12-26 CVE-2023-51091 Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12(4856)
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function R7WebsSecurityHandler.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-12-26 CVE-2023-51092 Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12(4856)
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function upgrade.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-12-26 CVE-2023-51093 Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12(4856)
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function fromSetLocalVlanInfo.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-12-26 CVE-2023-51094 OS Command Injection vulnerability in Tenda M3 Firmware 1.0.0.12(4856)
Tenda M3 V1.0.0.12(4856) was discovered to contain a Command Execution vulnerability via the function TendaTelnet.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2023-12-26 CVE-2023-51095 Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12(4856)
Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formDelWlRfPolicy.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-07-01 CVE-2022-32034 Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the items parameter in the function formdelMasteraclist.
network
low complexity
tenda CWE-787
7.5
7.5
2022-07-01 CVE-2022-32035 Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formMasterMng.
network
low complexity
tenda CWE-787
7.5
7.5
2022-07-01 CVE-2022-32036 Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12
Tenda M3 V1.0.0.12 was discovered to contain multiple stack overflow vulnerabilities via the ssidList, storeName, and trademark parameters in the function formSetStoreWeb.
network
low complexity
tenda CWE-787
7.5
7.5
2022-07-01 CVE-2022-32037 Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAPCfg.
network
low complexity
tenda CWE-787
7.5
7.5