Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-08-30 CVE-2023-41556 Out-of-bounds Write vulnerability in Tenda AC5 Firmware, AC7 Firmware and AC9 Firmware
Tenda AC7 V1.0 V15.03.06.44, Tenda AC9 V3.0 V15.03.06.42_multi, and Tenda AC5 V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter list at url /goform/SetIpMacBind.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-30 CVE-2023-41557 Out-of-bounds Write vulnerability in Tenda AC5 Firmware and AC7 Firmware
Tenda AC7 V1.0 V15.03.06.44 and Tenda AC5 V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter entrys and mitInterface at url /goform/addressNat.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-30 CVE-2023-41558 Out-of-bounds Write vulnerability in Tenda AC7 Firmware 15.03.06.44
Tenda AC7 V1.0 V15.03.06.44 was discovered to contain a stack overflow via parameter timeZone at url /goform/SetSysTimeCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-30 CVE-2023-41559 Out-of-bounds Write vulnerability in Tenda AC5 Firmware, AC7 Firmware and AC9 Firmware
Tenda AC7 V1.0 V15.03.06.44, Tenda AC9 V3.0 V15.03.06.42_multi, and Tenda AC5 V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter page at url /goform/NatStaticSetting.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-30 CVE-2023-41560 Out-of-bounds Write vulnerability in Tenda AC9 Firmware 15.03.06.42Multi
Tenda AC9 V3.0 V15.03.06.42_multi was discovered to contain a stack overflow via parameter firewallEn at url /goform/SetFirewallCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-30 CVE-2023-41561 Out-of-bounds Write vulnerability in Tenda AC5 Firmware and AC9 Firmware
Tenda AC9 V3.0 V15.03.06.42_multi and Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter startIp and endIp at url /goform/SetPptpServerCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-30 CVE-2023-41562 Out-of-bounds Write vulnerability in Tenda AC5 Firmware, AC7 Firmware and AC9 Firmware
Tenda AC7 V1.0 V15.03.06.44, Tenda AC9 V3.0 V15.03.06.42_multi, and Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter time at url /goform/PowerSaveSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-30 CVE-2023-41563 Out-of-bounds Write vulnerability in Tenda AC5 Firmware and AC9 Firmware
Tenda AC9 V3.0 V15.03.06.42_multi and Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 were discovered to contain a stack overflow via parameter mac at url /goform/GetParentControlInfo.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-28 CVE-2023-40846 Out-of-bounds Write vulnerability in Tenda AC6 Firmware 15.03.05.16
Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin is vulnerable to Buffer Overflow via function sub_90998.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-08-25 CVE-2023-40799 Out-of-bounds Write vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
Tenda AC23 Vv16.03.07.45_cn is vulnerable to Buffer Overflow via sub_450A4C function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8