Vulnerabilities > Tenda

DATE CVE VULNERABILITY TITLE RISK
2022-06-16 CVE-2022-30023 OS Command Injection vulnerability in Tenda HG9 Firmware 1.0.1
Tenda ONT GPON AC1200 Dual band WiFi HG9 v1.0.1 is vulnerable to Command Injection via the Ping function.
network
low complexity
tenda CWE-78
8.8
8.8
2022-06-02 CVE-2022-30425 OS Command Injection vulnerability in Tenda HG6 Firmware 3.3.0210926
Tenda Technology Co.,Ltd HG6 3.3.0-210926 was discovered to contain a command injection vulnerability via the pingAddr and traceAddr parameters.
network
low complexity
tenda CWE-78
8.8
8.8
2022-05-26 CVE-2022-30472 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19(6318)
Tenda AC Seris Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function fromAddressNat
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-05-26 CVE-2022-30473 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19(6318)
Tenda AC Series Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function form_fast_setting_wifi_set
network
low complexity
tenda CWE-787
7.5
7.5
2022-05-26 CVE-2022-30474 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19(6318)
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a heap overflow in the httpd module when handling /goform/saveParentControlInfo request.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-05-26 CVE-2022-30475 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19(6318)
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/WifiExtraSet request.
network
low complexity
tenda CWE-787
7.5
7.5
2022-05-26 CVE-2022-30476 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19(6318)
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/SetFirewallCfg request.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-05-26 CVE-2022-30477 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19(6318)
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/SetClientState request.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-05-24 CVE-2021-42659 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tenda AC9 Firmware 15.03.05.19(6318)/15.03.06.42Multi
There is a buffer overflow vulnerability in the Web server httpd of the router in Tenda router devices such as Tenda AC9 V1.0 V15.03.02.19(6318) and Tenda AC9 V3.0 V15.03.06.42_multi.
low complexity
tenda CWE-119
6.5
6.5
2022-05-18 CVE-2022-30033 Classic Buffer Overflow vulnerability in Tenda TX9 PRO Firmware 22.03.02.10
Tenda TX9 Pro V22.03.02.10 is vulnerable to Buffer Overflow via the functtion setIPv6Status() in httpd module.
network
low complexity
tenda CWE-120
7.5
7.5