Vulnerabilities > Tenda > High

DATE CVE VULNERABILITY TITLE RISK
2022-06-16 CVE-2022-30023 OS Command Injection vulnerability in Tenda HG9 Firmware 1.0.1
Tenda ONT GPON AC1200 Dual band WiFi HG9 v1.0.1 is vulnerable to Command Injection via the Ping function.
network
low complexity
tenda CWE-78
8.8
2022-06-02 CVE-2022-30425 OS Command Injection vulnerability in Tenda HG6 Firmware 3.3.0210926
Tenda Technology Co.,Ltd HG6 3.3.0-210926 was discovered to contain a command injection vulnerability via the pingAddr and traceAddr parameters.
network
low complexity
tenda CWE-78
8.8
2022-05-26 CVE-2022-30473 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19(6318)
Tenda AC Series Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function form_fast_setting_wifi_set
network
low complexity
tenda CWE-787
7.5
2022-05-26 CVE-2022-30475 Out-of-bounds Write vulnerability in Tenda Ac18 Firmware 15.03.05.19(6318)
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/WifiExtraSet request.
network
low complexity
tenda CWE-787
7.5
2022-05-18 CVE-2022-30033 Classic Buffer Overflow vulnerability in Tenda TX9 PRO Firmware 22.03.02.10
Tenda TX9 Pro V22.03.02.10 is vulnerable to Buffer Overflow via the functtion setIPv6Status() in httpd module.
network
low complexity
tenda CWE-120
7.5
2022-05-18 CVE-2022-28917 Out-of-bounds Write vulnerability in Tenda Ax12 Firmware 22.03.01.21Cn
Tenda AX12 v22.03.01.21_cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp.
network
low complexity
tenda CWE-787
7.5
2022-05-11 CVE-2022-30040 Out-of-bounds Write vulnerability in Tenda Ax1803 Firmware 1.0.0.12890
Tenda AX1803 v1.0.0.1_2890 is vulnerable to Buffer Overflow.
network
low complexity
tenda CWE-787
7.5
2022-05-06 CVE-2022-28969 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the shareSpeed parameter in the function fromSetWifiGusetBasic.
network
low complexity
tenda CWE-787
7.5
2022-05-06 CVE-2022-28970 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a heap overflow via the mac parameter in the function GetParentControlInfo.
network
low complexity
tenda CWE-787
7.5
2022-05-06 CVE-2022-28971 Out-of-bounds Write vulnerability in Tenda Ax1806 Firmware 1.0.0.1
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetIpMacBind.
network
low complexity
tenda CWE-787
7.5