Vulnerabilities > Tenda > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-08-25 CVE-2022-37809 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the speed_dir parameter in the function formSetSpeedWan.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37810 OS Command Injection vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a command injection vulnerability via the mac parameter in the function formWriteFacMac.
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2022-08-25 CVE-2022-37811 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the startIp parameter in the function formSetPPTPServer.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37812 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the firewallEn parameter in the function formSetFirewallCfg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37813 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromSetSysTime.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37814 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain multiple stack overflows via the deviceMac and the device_id parameters in the function addWifiMacFilter.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37815 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the PPPOEPassword parameter in the function formQuickIndex.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-25 CVE-2022-37816 Out-of-bounds Write vulnerability in Tenda Ac1206 Firmware 15.03.06.23
Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromSetIpMacBind.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-19 CVE-2022-37175 Out-of-bounds Write vulnerability in Tenda Ac15 Firmware 15.03.05.18
Tenda ac15 firmware V15.03.05.18 httpd server has stack buffer overflow in /goform/formWifiBasicSet.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-08-19 CVE-2022-35201 Unspecified vulnerability in Tenda Ac18 Firmware 15.03.05.05
Tenda-AC18 V15.03.05.05 was discovered to contain a remote command execution (RCE) vulnerability.
network
low complexity
tenda
critical
 9.8
9.8