Vulnerabilities > Tenda
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-05 | CVE-2023-50991 | Classic Buffer Overflow vulnerability in Tenda I29 Firmware 1.0.0.2/1.0.0.5 Buffer Overflow vulnerability in Tenda i29 versions 1.0 V1.0.0.5 and 1.0 V1.0.0.2, allows remote attackers to cause a denial of service (DoS) via the pingIp parameter in the pingSet function. | 7.5 |
2024-01-04 | CVE-2023-51812 | Unspecified vulnerability in Tenda AX3 Firmware 16.03.12.11 Tenda AX3 v16.03.12.11 was discovered to contain a remote code execution (RCE) vulnerability via the list parameter at /goform/SetNetControlList. | 9.8 |
2023-12-26 | CVE-2023-51090 | Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12(4856) Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formGetWeiXinConfig. | 9.8 |
2023-12-26 | CVE-2023-51091 | Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12(4856) Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function R7WebsSecurityHandler. | 9.8 |
2023-12-26 | CVE-2023-51092 | Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12(4856) Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function upgrade. | 9.8 |
2023-12-26 | CVE-2023-51093 | Out-of-bounds Write vulnerability in Tenda M3 Firmware 1.0.0.12(4856) Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function fromSetLocalVlanInfo. | 9.8 |
2023-12-26 | CVE-2023-51094 | OS Command Injection vulnerability in Tenda M3 Firmware 1.0.0.12(4856) Tenda M3 V1.0.0.12(4856) was discovered to contain a Command Execution vulnerability via the function TendaTelnet. | 9.8 |
2023-12-26 | CVE-2023-51097 | Out-of-bounds Write vulnerability in Tenda W9 Firmware 1.0.0.7(4456)Cn Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formSetAutoPing. | 9.8 |
2023-12-26 | CVE-2023-51098 | OS Command Injection vulnerability in Tenda W9 Firmware 1.0.0.7(4456)Cn Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formSetDiagnoseInfo . | 9.8 |
2023-12-26 | CVE-2023-51099 | OS Command Injection vulnerability in Tenda W9 Firmware 1.0.0.7(4456)Cn Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formexeCommand . | 9.8 |