Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-04-07 CVE-2023-27017 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 16.03.10.13Cn
Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the sub_45DC58 function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-27018 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 16.03.10.13Cn
Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the sub_45EC1C function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-27019 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 16.03.10.13Cn
Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the sub_458FBC function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-27020 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 16.03.10.13Cn
Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the saveParentControlInfo function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-27021 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 16.03.10.13Cn
Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the formSetFirewallCfg function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-03-19 CVE-2023-26805 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E v15.11.0.6 (US_W20EV4.0br_v15.11.0.6(1068_1546_841)_CN_TDC) is vulnerable to Buffer Overflow via function formIPMacBindModify.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-03-19 CVE-2023-26806 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E v15.11.0.6(US_W20EV4.0br_v15.11.0.6(1068_1546_841 is vulnerable to Buffer Overflow via function formSetSysTime,
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-03-15 CVE-2023-27239 Out-of-bounds Write vulnerability in Tenda AX3 Firmware 16.03.12.11
Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the shareSpeed parameter at /goform/WifiGuestSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-03-15 CVE-2023-27240 Command Injection vulnerability in Tenda AX3 Firmware 16.03.12.11
Tenda AX3 V16.03.12.11 was discovered to contain a command injection vulnerability via the lanip parameter at /goform/AdvSetLanip.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2023-03-13 CVE-2023-27061 Classic Buffer Overflow vulnerability in Tenda W15E Firmware 15.11.0.14
Tenda V15V1.0 V15.11.0.14(1521_3190_1058) was discovered to contain a buffer overflow vulnerability via the wifiFilterListRemark parameter in the modifyWifiFilterRules function.
network
low complexity
tenda CWE-120
critical
 9.8
9.8