Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-10-17 CVE-2022-42164 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 15.03.06.23
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formSetClientState.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-10-17 CVE-2022-42165 Out-of-bounds Write vulnerability in Tenda Ac10 Firmware 15.03.06.23
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formSetDeviceName.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-09-28 CVE-2022-40942 Out-of-bounds Write vulnerability in Tenda TX3 Firmware 16.03.13.11
Tenda TX3 US_TX3V1.0br_V16.03.13.11 is vulnerable to stack overflow via compare_parentcontrol_time.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-09-23 CVE-2022-40100 Command Injection vulnerability in Tenda I9 Firmware 1.0.0.8(3828)
Tenda i9 v1.0.0.8(3828) was discovered to contain a command injection vulnerability via the FormexeCommand function.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2022-09-23 CVE-2022-40851 Out-of-bounds Write vulnerability in Tenda Ac15 Firmware 15.03.05.19
Tenda AC15 V15.03.05.19 contained a stack overflow via the function fromAddressNat.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-09-23 CVE-2022-40854 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19(6318)
Tenda AC18 router contained a stack overflow vulnerability in /goform/fast_setting_wifi_set
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-09-23 CVE-2022-40855 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E router V15.11.0.6 contains a stack overflow in the function formSetPortMapping with post request 'goform/setPortMapping/'.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-09-23 CVE-2022-40866 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formSetDebugCfg with request /goform/setDebugCfg/
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-09-23 CVE-2022-40867 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formIPMacBindDel with the request /goform/delIpMacBind/
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-09-23 CVE-2022-40868 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formDelDhcpRule with the request /goform/delDhcpRules/
network
low complexity
tenda CWE-787
critical
 9.8
9.8