Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-10-27 CVE-2022-40876 Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.1
In Tenda ax1803 v1.0.0.1, the http requests handled by the fromAdvSetMacMtuWan functions, wanSpeed, cloneType, mac, can cause a stack overflow and enable remote code execution (RCE).
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-10-20 CVE-2022-42233 Improper Authentication vulnerability in Tenda 11N Firmware 5.07.33Cn
Tenda 11N with firmware version V5.07.33_cn suffers from an Authentication Bypass vulnerability.
network
low complexity
tenda CWE-287
critical
 9.8
9.8
2022-10-19 CVE-2022-43024 Out-of-bounds Write vulnerability in Tenda TX3 Firmware 16.03.13.11
Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the list parameter at /goform/SetVirtualServerCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-10-19 CVE-2022-43025 Out-of-bounds Write vulnerability in Tenda TX3 Firmware 16.03.13.11
Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the startIp parameter at /goform/SetPptpServerCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-10-19 CVE-2022-43026 Out-of-bounds Write vulnerability in Tenda TX3 Firmware 16.03.13.11
Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the endIp parameter at /goform/SetPptpServerCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-10-19 CVE-2022-43027 Out-of-bounds Write vulnerability in Tenda TX3 Firmware 16.03.13.11
Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the firewallEn parameter at /goform/SetFirewallCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-10-19 CVE-2022-43028 Out-of-bounds Write vulnerability in Tenda TX3 Firmware 16.03.13.11
Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the timeZone parameter at /goform/SetSysTimeCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-10-19 CVE-2022-43029 Out-of-bounds Write vulnerability in Tenda TX3 Firmware 16.03.13.11
Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the time parameter at /goform/SetSysTimeCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-10-18 CVE-2022-43260 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19
Tenda AC18 V15.03.05.19(6318) was discovered to contain a stack overflow via the time parameter in the fromSetSysTime function.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-10-17 CVE-2022-42166 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 15.03.06.23
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formSetSpeedWan.
network
low complexity
tenda CWE-787
critical
 9.8
9.8