Vulnerabilities > Tenda > High

DATE CVE VULNERABILITY TITLE RISK
2023-08-14 CVE-2023-39829 Out-of-bounds Write vulnerability in Tenda A18 Firmware 15.13.07.09
Tenda A18 V15.13.07.09 was discovered to contain a stack overflow via the wpapsk_crypto2_4g parameter in the fromSetWirelessRepeat function.
network
low complexity
tenda CWE-787
7.5
7.5
2023-06-06 CVE-2023-33530 Command Injection vulnerability in Tenda G103 Firmware 1.0.0.5
There is a command injection vulnerability in the Tenda G103 Gigabit GPON Terminal with firmware version V1.0.0.5.
network
low complexity
tenda CWE-77
8.8
8.8
2023-06-02 CVE-2023-33672 Out-of-bounds Write vulnerability in Tenda AC8 Firmware 16.03.34.06
Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function.
network
low complexity
tenda CWE-787
7.5
7.5
2023-05-11 CVE-2023-2649 Command Injection vulnerability in Tenda Ac23 Firmware 16.03.07.45Cn
A vulnerability was found in Tenda AC23 16.03.07.45_cn.
network
low complexity
tenda CWE-77
8.8
8.8
2023-05-10 CVE-2023-30351 Inadequate Encryption Strength vulnerability in Tenda CP3 Firmware 11.10.00.2211041355
Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard-coded default password for root which is stored using weak encryption.
network
low complexity
tenda CWE-326
7.5
7.5
2023-05-10 CVE-2023-30356 Improper Validation of Integrity Check Value vulnerability in Tenda CP3 Firmware 11.10.00.2211041355
Missing Support for an Integrity Check in Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 allows attackers to update the device with crafted firmware
network
low complexity
tenda CWE-354
7.5
7.5
2023-04-04 CVE-2023-26976 Out-of-bounds Write vulnerability in Tenda AC6 Firmware 15.03.05.09
Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the ssid parameter in the form_fast_setting_wifi_set function.
network
low complexity
tenda CWE-787
7.5
7.5
2023-03-24 CVE-2023-27042 Out-of-bounds Write vulnerability in Tenda AX3 Firmware 16.03.12.11
Tenda AX3 V16.03.12.11 is vulnerable to Buffer Overflow via /goform/SetFirewallCfg.
network
low complexity
tenda CWE-787
8.8
8.8
2023-03-23 CVE-2023-27079 Command Injection vulnerability in Tenda G103 Firmware 1.0.05
Command Injection vulnerability found in Tenda G103 v.1.0.05 allows an attacker to obtain sensitive information via a crafted package
network
low complexity
tenda CWE-77
7.5
7.5
2023-03-13 CVE-2023-27062 Classic Buffer Overflow vulnerability in Tenda W15E Firmware 15.11.0.14
Tenda V15V1.0 was discovered to contain a buffer overflow vulnerability via the gotoUrl parameter in the formPortalAuth function.
network
low complexity
tenda CWE-120
7.5
7.5