Vulnerabilities > Tenda

DATE CVE VULNERABILITY TITLE RISK
2022-10-12 CVE-2022-42081 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23Multitd01
Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 was discovered to contain a stack overflow via sched_end_time parameter.
network
low complexity
tenda CWE-787
7.5
7.5
2022-10-12 CVE-2022-42086 Cross-Site Request Forgery (CSRF) vulnerability in Tenda Ax1803 Firmware 1.0.0.12994Cnzgyd014
Tenda AX1803 US_AX1803v2.0br_v1.0.0.1_2994_CN_ZGYD01_4 is vulnerable to Cross Site Request Forgery (CSRF) via function TendaAteMode.
network
low complexity
tenda CWE-352
6.5
6.5
2022-10-12 CVE-2022-42087 Cross-Site Request Forgery (CSRF) vulnerability in Tenda Ax1803 Firmware 1.0.0.12994Cnzgyd014
Tenda AX1803 US_AX1803v2.0br_v1.0.0.1_2994_CN_ZGYD01_4 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.
network
low complexity
tenda CWE-352
6.5
6.5
2022-09-28 CVE-2022-40942 Out-of-bounds Write vulnerability in Tenda TX3 Firmware 16.03.13.11
Tenda TX3 US_TX3V1.0br_V16.03.13.11 is vulnerable to stack overflow via compare_parentcontrol_time.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-09-23 CVE-2022-40100 Command Injection vulnerability in Tenda I9 Firmware 1.0.0.8(3828)
Tenda i9 v1.0.0.8(3828) was discovered to contain a command injection vulnerability via the FormexeCommand function.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2022-09-23 CVE-2022-40101 Out-of-bounds Write vulnerability in Tenda I9 Firmware 1.0.0.8(3828)
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formWifiMacFilterSet function.
network
low complexity
tenda CWE-787
7.5
7.5
2022-09-23 CVE-2022-40102 Out-of-bounds Write vulnerability in Tenda I9 Firmware 1.0.0.8(3828)
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formwrlSSIDset function.
network
low complexity
tenda CWE-787
7.5
7.5
2022-09-23 CVE-2022-40103 Out-of-bounds Write vulnerability in Tenda I9 Firmware 1.0.0.8(3828)
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formSetAutoPing function.
local
low complexity
tenda CWE-787
5.5
5.5
2022-09-23 CVE-2022-40104 Out-of-bounds Write vulnerability in Tenda I9 Firmware 1.0.0.8(3828)
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formwrlSSIDget function.
network
low complexity
tenda CWE-787
7.5
7.5
2022-09-23 CVE-2022-40105 Out-of-bounds Write vulnerability in Tenda I9 Firmware 1.0.0.8(3828)
Tenda i9 v1.0.0.8(3828) was discovered to contain a buffer overflow via the formWifiMacFilterGet function.
network
low complexity
tenda CWE-787
7.5
7.5