Vulnerabilities > Tenda

DATE CVE VULNERABILITY TITLE RISK
2022-11-15 CVE-2022-40847 OS Command Injection vulnerability in Tenda W15E Firmware 15.11.0.10(1576)
In Tenda AC1200 Router model W15Ev2 V15.11.0.10(1576), there exists a command injection vulnerability in the function formSetFixTools.
local
low complexity
tenda CWE-78
7.8
7.8
2022-11-03 CVE-2022-43101 Out-of-bounds Write vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the devName parameter in the formSetDeviceName function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-11-03 CVE-2022-43102 Out-of-bounds Write vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the timeZone parameter in the fromSetSysTime function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-11-03 CVE-2022-43103 Out-of-bounds Write vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the list parameter in the formSetQosBand function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-11-03 CVE-2022-43104 Out-of-bounds Write vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the wpapsk_crypto parameter in the fromSetWirelessRepeat function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-11-03 CVE-2022-43105 Out-of-bounds Write vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-11-03 CVE-2022-43106 Out-of-bounds Write vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the schedStartTime parameter in the setSchedWifi function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-11-03 CVE-2022-43107 Out-of-bounds Write vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the time parameter in the setSmartPowerManagement function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-11-03 CVE-2022-43108 Out-of-bounds Write vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
Tenda AC23 V16.03.07.45_cn was discovered to contain a stack overflow via the firewallEn parameter in the formSetFirewallCfg function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-10-27 CVE-2022-40876 Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.1
In Tenda ax1803 v1.0.0.1, the http requests handled by the fromAdvSetMacMtuWan functions, wanSpeed, cloneType, mac, can cause a stack overflow and enable remote code execution (RCE).
network
low complexity
tenda CWE-787
critical
 9.8
9.8