Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-12-30 CVE-2022-47121 Out-of-bounds Write vulnerability in Tenda A15 Firmware 15.13.07.13
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey parameter at /goform/WifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-47122 Out-of-bounds Write vulnerability in Tenda A15 Firmware 15.13.07.13
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlPwd_5g parameter at /goform/WifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-47123 Out-of-bounds Write vulnerability in Tenda A15 Firmware 15.13.07.13
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey3 parameter at /goform/WifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-47124 Out-of-bounds Write vulnerability in Tenda A15 Firmware 15.13.07.13
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey4 parameter at /goform/WifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-47125 Out-of-bounds Write vulnerability in Tenda A15 Firmware 15.13.07.13
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlEn_5g parameter at /goform/WifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-47126 Out-of-bounds Write vulnerability in Tenda A15 Firmware 15.13.07.13
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlEn parameter at /goform/WifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-47127 Out-of-bounds Write vulnerability in Tenda A15 Firmware 15.13.07.13
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlPwd parameter at /goform/WifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-47128 Out-of-bounds Write vulnerability in Tenda A15 Firmware 15.13.07.13
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey2 parameter at /goform/WifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-20 CVE-2022-46538 OS Command Injection vulnerability in Tenda F1203 Firmware 2.0.1.6
Tenda F1203 V2.0.1.6 was discovered to contain a command injection vulnerability via the mac parameter at /goform/WriteFacMac.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2022-12-08 CVE-2022-45497 OS Command Injection vulnerability in Tenda W6-S Firmware 1.0.0.4(510)
Tenda W6-S v1.0.0.4(510) was discovered to contain a command injection vulnerability in the tpi_get_ping_output function at /goform/exeCommand.
network
low complexity
tenda CWE-78
critical
 9.8
9.8