Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-09-23 CVE-2022-40868 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formDelDhcpRule with the request /goform/delDhcpRules/
network
low complexity
tenda CWE-787
critical
9.8
2022-09-16 CVE-2022-38829 Classic Buffer Overflow vulnerability in Tenda RX9 PRO Firmware 22.03.02.10
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/setMacFilterCfg.
network
low complexity
tenda CWE-120
critical
9.8
2022-09-16 CVE-2022-38830 Classic Buffer Overflow vulnerability in Tenda RX9 PRO Firmware 22.03.02.10
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/setIPv6Status.
network
low complexity
tenda CWE-120
critical
9.8
2022-09-16 CVE-2022-38831 Classic Buffer Overflow vulnerability in Tenda RX9 PRO Firmware 22.03.02.10
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/SetNetControlList
network
low complexity
tenda CWE-120
critical
9.8
2022-09-08 CVE-2022-36586 Classic Buffer Overflow vulnerability in Tenda G3 Firmware 15.11.0.6(7663)
In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, there is a buffer overflow vulnerability caused by strcpy in function 0x869f4 in the httpd binary.
network
low complexity
tenda CWE-120
critical
9.8
2022-09-07 CVE-2022-36585 Classic Buffer Overflow vulnerability in Tenda G3 Firmware 15.11.0.6(7663)
In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, in httpd binary, the addDhcpRule function has a buffer overflow caused by sscanf.
network
low complexity
tenda CWE-120
critical
9.8
2022-09-07 CVE-2022-38309 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.05/15.03.05.19(6318)
Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain a stack overflow via the list parameter at /goform/SetVirtualServerCfg.
network
low complexity
tenda CWE-787
critical
9.8
2022-09-07 CVE-2022-38310 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.05/15.03.05.19(6318)
Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain a stack overflow via the list parameter at /goform/SetStaticRouteCfg.
network
low complexity
tenda CWE-787
critical
9.8
2022-09-07 CVE-2022-38311 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.05/15.03.05.19(6318)
Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain a stack overflow via the time parameter at /goform/PowerSaveSet.
network
low complexity
tenda CWE-787
critical
9.8
2022-09-07 CVE-2022-38312 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.05/15.03.05.19(6318)
Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain a stack overflow via the list parameter at /goform/SetIpMacBind.
network
low complexity
tenda CWE-787
critical
9.8