Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-10-25 CVE-2023-46369 Out-of-bounds Write vulnerability in Tenda W18E Firmware 16.01.0.8(1576)
Tenda W18E V16.01.0.8(1576) contains a stack overflow vulnerability via the portMirrorMirroredPorts parameter in the formSetNetCheckTools function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-10-25 CVE-2023-46370 Command Injection vulnerability in Tenda W18E Firmware 16.01.0.8(1576)
Tenda W18E V16.01.0.8(1576) has a command injection vulnerability via the hostName parameter in the formSetNetCheckTools function.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2023-10-03 CVE-2023-40830 Classic Buffer Overflow vulnerability in Tenda AC6 Firmware 15.03.05.19
Tenda AC6 v15.03.05.19 is vulnerable to Buffer Overflow as the Index parameter does not verify the length.
network
low complexity
tenda CWE-120
critical
 9.8
9.8
2023-09-18 CVE-2023-42320 Classic Buffer Overflow vulnerability in Tenda Ac10 Firmware 16.03.10.13
Buffer Overflow vulnerability in Tenda AC10V4 v.US_AC10V4.0si_V16.03.10.13_cn_TDC01 allows a remote attacker to cause a denial of service via the mac parameter in the GetParentControlInfo function.
network
low complexity
tenda CWE-120
critical
 9.8
9.8
2023-09-04 CVE-2023-4744 Out-of-bounds Write vulnerability in Tenda AC8 Firmware 16.03.34.06
A vulnerability was found in Tenda AC8 16.03.34.06_cn_TDC01.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-30 CVE-2023-40837 OS Command Injection vulnerability in Tenda AC6 Firmware 15.03.05.16
Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin function 'sub_ADD50' contains a command execution vulnerability.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2023-08-30 CVE-2023-40838 OS Command Injection vulnerability in Tenda AC6 Firmware 15.03.05.16
Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin function 'sub_3A1D0' contains a command execution vulnerability.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2023-08-30 CVE-2023-40839 OS Command Injection vulnerability in Tenda AC6 Firmware 15.03.05.16
Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin function 'sub_ADF3C' contains a command execution vulnerability.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2023-08-30 CVE-2023-40840 Out-of-bounds Write vulnerability in Tenda AC6 Firmware 15.03.05.16
Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin is vulnerable to Buffer Overflow via function "fromGetWirelessRepeat."
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-30 CVE-2023-40841 Out-of-bounds Write vulnerability in Tenda AC6 Firmware 15.03.05.16
Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin is vulnerable to Buffer Overflow via function "add_white_node,"
network
low complexity
tenda CWE-787
critical
 9.8
9.8