Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2025-06-05 CVE-2025-5629 Classic Buffer Overflow vulnerability in Tenda Ac10 Firmware
A vulnerability, which was classified as critical, was found in Tenda AC10 up to 15.03.06.47.
network
low complexity
tenda CWE-120
critical
 9.8
9.8
2025-06-04 CVE-2025-5619 Out-of-bounds Write vulnerability in Tenda Ch22 Firmware 1.0.0.1
A vulnerability, which was classified as critical, has been found in Tenda CH22 1.0.0.1.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2025-05-06 CVE-2025-4368 Classic Buffer Overflow vulnerability in Tenda AC8 Firmware 16.03.34.06
A vulnerability, which was classified as critical, was found in Tenda AC8 16.03.34.06.
network
low complexity
tenda CWE-120
critical
 9.8
9.8
2025-05-06 CVE-2025-4298 Classic Buffer Overflow vulnerability in Tenda Ac1206 Firmware 1.0/15.03.06.23
A vulnerability was found in Tenda AC1206 up to 15.03.06.23.
network
low complexity
tenda CWE-120
critical
 9.8
9.8
2025-05-06 CVE-2025-4299 Classic Buffer Overflow vulnerability in Tenda Ac1206 Firmware 1.0/15.03.06.23
A vulnerability was found in Tenda AC1206 up to 15.03.06.23.
network
low complexity
tenda CWE-120
critical
 9.8
9.8
2025-05-05 CVE-2025-45042 Command Injection vulnerability in Tenda AC9 Firmware 15.03.05.14
Tenda AC9 v15.03.05.14 was discovered to contain a command injection vulnerability via the Telnet function.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2025-03-14 CVE-2025-29384 Out-of-bounds Write vulnerability in Tenda AC9 Firmware 15.03.05.14
In Tenda AC9 v1.0 V15.03.05.14_multi, the wanMTU parameter of /goform/AdvSetMacMtuWan has a stack overflow vulnerability, which can lead to remote arbitrary code execution.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2025-03-14 CVE-2025-29385 Out-of-bounds Write vulnerability in Tenda AC9 Firmware 15.03.05.14
In Tenda AC9 v1.0 V15.03.05.14_multi, the cloneType parameter of /goform/AdvSetMacMtuWan has a stack overflow vulnerability, which can lead to remote arbitrary code execution.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2025-03-14 CVE-2025-29386 Out-of-bounds Write vulnerability in Tenda AC9 Firmware 15.03.05.14
In Tenda AC9 v1.0 V15.03.05.14_multi, the mac parameter of /goform/AdvSetMacMtuWan has a stack overflow vulnerability, which can lead to remote arbitrary code execution.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2025-03-14 CVE-2025-29029 Out-of-bounds Write vulnerability in Tenda AC6 Firmware 15.03.05.16
Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the formSetSpeedWan function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8