Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-08-25 CVE-2022-37804 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter in the function saveParentControlInfo.
network
low complexity
tenda CWE-787
critical
9.8
2022-08-25 CVE-2022-37805 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromWizardHandle.
network
low complexity
tenda CWE-787
critical
9.8
2022-08-25 CVE-2022-37806 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromDhcpListClient.
network
low complexity
tenda CWE-787
critical
9.8
2022-08-25 CVE-2022-37807 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function formSetClientState.
network
low complexity
tenda CWE-787
critical
9.8
2022-08-25 CVE-2022-37808 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the index parameter in the function formWifiWpsOOB.
network
low complexity
tenda CWE-787
critical
9.8
2022-08-25 CVE-2022-37809 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the speed_dir parameter in the function formSetSpeedWan.
network
low complexity
tenda CWE-787
critical
9.8
2022-08-25 CVE-2022-37810 OS Command Injection vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a command injection vulnerability via the mac parameter in the function formWriteFacMac.
network
low complexity
tenda CWE-78
critical
9.8
2022-08-25 CVE-2022-37811 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the startIp parameter in the function formSetPPTPServer.
network
low complexity
tenda CWE-787
critical
9.8
2022-08-25 CVE-2022-37812 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the firewallEn parameter in the function formSetFirewallCfg.
network
low complexity
tenda CWE-787
critical
9.8
2022-08-25 CVE-2022-37813 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromSetSysTime.
network
low complexity
tenda CWE-787
critical
9.8