Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-12-30 CVE-2022-47125 Out-of-bounds Write vulnerability in Tenda A15 Firmware 15.13.07.13
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlEn_5g parameter at /goform/WifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-47126 Out-of-bounds Write vulnerability in Tenda A15 Firmware 15.13.07.13
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlEn parameter at /goform/WifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-47127 Out-of-bounds Write vulnerability in Tenda A15 Firmware 15.13.07.13
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlPwd parameter at /goform/WifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-47128 Out-of-bounds Write vulnerability in Tenda A15 Firmware 15.13.07.13
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey2 parameter at /goform/WifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-20 CVE-2022-46538 OS Command Injection vulnerability in Tenda F1203 Firmware 2.0.1.6
Tenda F1203 V2.0.1.6 was discovered to contain a command injection vulnerability via the mac parameter at /goform/WriteFacMac.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2022-12-08 CVE-2022-45497 OS Command Injection vulnerability in Tenda W6-S Firmware 1.0.0.4(510)
Tenda W6-S v1.0.0.4(510) was discovered to contain a command injection vulnerability in the tpi_get_ping_output function at /goform/exeCommand.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2022-12-08 CVE-2022-45506 OS Command Injection vulnerability in Tenda W30E Firmware 1.0.1.25(633)
Tenda W30E v1.0.1.25(633) was discovered to contain a command injection vulnerability via the fileNameMit parameter at /goform/delFileName.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2022-12-02 CVE-2022-44362 Out-of-bounds Write vulnerability in Tenda I21 Firmware 1.0.0.14(4656)
Tenda i21 V1.0.0.14(4656) is vulnerable to Buffer Overflow via /goform/AddSysLogRule.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-02 CVE-2022-44363 Out-of-bounds Write vulnerability in Tenda I21 Firmware 1.0.0.14(4656)
Tenda i21 V1.0.0.14(4656) is vulnerable to Buffer Overflow via /goform/setSnmpInfo.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-02 CVE-2022-44365 Out-of-bounds Write vulnerability in Tenda I21 Firmware 1.0.0.14(4656)
Tenda i21 V1.0.0.14(4656) has a stack overflow vulnerability via /goform/setSysPwd.
network
low complexity
tenda CWE-787
critical
 9.8
9.8