Vulnerabilities > Tenda

DATE CVE VULNERABILITY TITLE RISK
2023-08-25 CVE-2023-40797 Improper Input Validation vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
In Tenda AC23 v16.03.07.45_cn, the sub_4781A4 function does not validate the parameters entered by the user, resulting in a post-authentication stack overflow vulnerability.
network
low complexity
tenda CWE-20
8.8
8.8
2023-08-25 CVE-2023-40798 Improper Input Validation vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
In Tenda AC23 v16.03.07.45_cn, the formSetIPv6status and formGetWanParameter functions do not authenticate user input parameters, resulting in a post-authentication stack overflow vulnerability.
network
low complexity
tenda CWE-20
8.8
8.8
2023-08-25 CVE-2023-40799 Out-of-bounds Write vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
Tenda AC23 Vv16.03.07.45_cn is vulnerable to Buffer Overflow via sub_450A4C function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-25 CVE-2023-40800 Improper Input Validation vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
The compare_parentcontrol_time function does not authenticate user input parameters, resulting in a post-authentication stack overflow vulnerability in Tenda AC23 v16.03.07.45_cn.
network
low complexity
tenda CWE-20
8.8
8.8
2023-08-25 CVE-2023-40801 Improper Input Validation vulnerability in Tenda Ac23
The sub_451784 function does not validate the parameters entered by the user, resulting in a stack overflow vulnerability in Tenda AC23 v16.03.07.45_cn
network
low complexity
tenda CWE-20
8.8
8.8
2023-08-25 CVE-2023-40802 Out-of-bounds Write vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
The get_parentControl_list_Info function does not verify the parameters entered by the user, causing a post-authentication heap overflow vulnerability in Tenda AC23 v16.03.07.45_cn
network
low complexity
tenda CWE-787
6.5
6.5
2023-08-25 CVE-2023-40915 Out-of-bounds Write vulnerability in Tenda AX3 Firmware 16.03.12.11
Tenda AX3 v16.03.12.11 has a stack buffer overflow vulnerability detected at function form_fast_setting_wifi_set.
network
low complexity
tenda CWE-787
7.5
7.5
2023-08-24 CVE-2023-40891 Out-of-bounds Write vulnerability in Tenda Ac8V4 Firmware 16.03.34.06
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter firewallEn at /goform/SetFirewallCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-24 CVE-2023-40892 Out-of-bounds Write vulnerability in Tenda Ac8V4 Firmware 16.03.34.06
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter schedStartTime and schedEndTime at /goform/openSchedWifi.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-24 CVE-2023-40893 Out-of-bounds Write vulnerability in Tenda Ac8V4 Firmware 16.03.34.06
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter time at /goform/PowerSaveSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8