Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-09-07 CVE-2022-38314 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.05/15.03.05.19(6318)
Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain a stack overflow via the urls parameter at /goform/saveParentControlInfo.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-09-07 CVE-2022-36587 Classic Buffer Overflow vulnerability in Tenda G3 Firmware 15.11.0.6(7663)
In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, there is a buffer overflow vulnerability caused by sprintf in function in the httpd binary.
network
low complexity
tenda CWE-120
critical
 9.8
9.8
2022-09-06 CVE-2022-36584 Classic Buffer Overflow vulnerability in Tenda G3 Firmware 15.11.0.6(7663)
In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, the getsinglepppuser function has a buffer overflow caused by sscanf.
network
low complexity
tenda CWE-120
critical
 9.8
9.8
2022-08-25 CVE-2022-37798 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function formSetVirtualSer.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37799 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter at the function setSmartPowerManagement.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37800 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function fromSetRouteStatic.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37801 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function formSetQosBand.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37802 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromNatStaticSetting.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37803 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromAddressNat.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37804 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter in the function saveParentControlInfo.
network
low complexity
tenda CWE-787
critical
 9.8
9.8