Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-04-07 CVE-2023-27021 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 16.03.10.13Cn
Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the formSetFirewallCfg function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-03-19 CVE-2023-26805 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E v15.11.0.6 (US_W20EV4.0br_v15.11.0.6(1068_1546_841)_CN_TDC) is vulnerable to Buffer Overflow via function formIPMacBindModify.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-03-19 CVE-2023-26806 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E v15.11.0.6(US_W20EV4.0br_v15.11.0.6(1068_1546_841 is vulnerable to Buffer Overflow via function formSetSysTime,
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-03-15 CVE-2023-27239 Out-of-bounds Write vulnerability in Tenda AX3 Firmware 16.03.12.11
Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the shareSpeed parameter at /goform/WifiGuestSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-03-15 CVE-2023-27240 Command Injection vulnerability in Tenda AX3 Firmware 16.03.12.11
Tenda AX3 V16.03.12.11 was discovered to contain a command injection vulnerability via the lanip parameter at /goform/AdvSetLanip.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2023-03-13 CVE-2023-27061 Classic Buffer Overflow vulnerability in Tenda W15E Firmware 15.11.0.14
Tenda V15V1.0 V15.11.0.14(1521_3190_1058) was discovered to contain a buffer overflow vulnerability via the wifiFilterListRemark parameter in the modifyWifiFilterRules function.
network
low complexity
tenda CWE-120
critical
 9.8
9.8
2023-03-13 CVE-2023-27063 Classic Buffer Overflow vulnerability in Tenda W15E Firmware 15.11.0.14
Tenda V15V1.0 V15.11.0.14(1521_3190_1058) was discovered to contain a buffer overflow vulnerability via the DNSDomainName parameter in the formModifyDnsForward function.
network
low complexity
tenda CWE-120
critical
 9.8
9.8
2023-02-27 CVE-2023-25231 Out-of-bounds Write vulnerability in Tenda W30E Firmware V1.0.1.25(633)
Tenda Router W30E V1.0.1.25(633) is vulnerable to Buffer Overflow in function fromRouteStatic via parameters entrys and mitInterface.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-02-27 CVE-2023-25233 Out-of-bounds Write vulnerability in Tenda Ac500 Firmware 2.0.1.9(1307)
Tenda AC500 V2.0.1.9(1307) is vulnerable to Buffer Overflow in function fromRouteStatic via parameters entrys and mitInterface.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-02-27 CVE-2023-25234 Out-of-bounds Write vulnerability in Tenda Ac500 Firmware 2.0.1.9(1307)
Tenda AC500 V2.0.1.9(1307) is vulnerable to Buffer Overflow in function fromAddressNat via parameters entrys and mitInterface.
network
low complexity
tenda CWE-787
critical
 9.8
9.8