Vulnerabilities > Tenda
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-11-30 | CVE-2023-48964 | Out-of-bounds Write vulnerability in Tenda I6 Firmware 1.0.0.8(3856) Tenda i6 V1.0.0.8(3856) is vulnerable to Buffer Overflow via /goform/WifiMacFilterSet. | 7.5 |
2023-11-29 | CVE-2023-45479 | Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 16.03.10.13 Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the list parameter in the function sub_49E098. | 9.8 |
2023-11-29 | CVE-2023-45480 | Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 16.03.10.13 Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the src parameter in the function sub_47D878. | 9.8 |
2023-11-29 | CVE-2023-45481 | Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 16.03.10.13 Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the firewallEn parameter in the function SetFirewallCfg. | 9.8 |
2023-11-29 | CVE-2023-45482 | Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 16.03.10.13 Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the urls parameter in the function get_parentControl_list_Info. | 9.8 |
2023-11-29 | CVE-2023-45483 | Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 16.03.10.13 Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the time parameter in the function compare_parentcontrol_time. | 9.8 |
2023-11-29 | CVE-2023-45484 | Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 16.03.10.13 Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the shareSpeed parameter in the function fromSetWifiGuestBasic. | 9.8 |
2023-11-27 | CVE-2023-49044 | Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.1 Stack Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the ssid parameter in the function form_fast_setting_wifi_set. | 9.8 |
2023-11-27 | CVE-2023-49040 | Command Injection vulnerability in Tenda Ax1803 Firmware 1.0.0.1 An issue in Tneda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the adslPwd parameter in the form_fast_setting_internet_set function. | 9.8 |
2023-11-27 | CVE-2023-49042 | Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.1 Heap Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the schedStartTime parameter or the schedEndTime parameter in the function setSchedWifi. | 9.8 |