Vulnerabilities > Tenda > W20E Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-03-19 CVE-2023-26805 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E v15.11.0.6 (US_W20EV4.0br_v15.11.0.6(1068_1546_841)_CN_TDC) is vulnerable to Buffer Overflow via function formIPMacBindModify.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-03-19 CVE-2023-26806 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E v15.11.0.6(US_W20EV4.0br_v15.11.0.6(1068_1546_841 is vulnerable to Buffer Overflow via function formSetSysTime,
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-02-02 CVE-2022-48130 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E v15.11.0.6 was discovered to contain multiple stack overflows in the function formSetStaticRoute via the parameters staticRouteNet, staticRouteMask, staticRouteGateway, staticRouteWAN.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-12 CVE-2022-45996 OS Command Injection vulnerability in Tenda W20E Firmware 16.01.0.6(3392)
Tenda W20E V16.01.0.6(3392) is vulnerable to Command injection via cmd_get_ping_output.
network
low complexity
tenda CWE-78
7.2
7.2
2022-12-12 CVE-2022-45997 Classic Buffer Overflow vulnerability in Tenda W20E Firmware 16.01.0.6(3392)
Tenda W20E V16.01.0.6(3392) is vulnerable to Buffer Overflow.
network
low complexity
tenda CWE-120
7.2
7.2
2022-09-23 CVE-2022-40855 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E router V15.11.0.6 contains a stack overflow in the function formSetPortMapping with post request 'goform/setPortMapping/'.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-09-23 CVE-2022-40866 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formSetDebugCfg with request /goform/setDebugCfg/
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-09-23 CVE-2022-40867 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formIPMacBindDel with the request /goform/delIpMacBind/
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-09-23 CVE-2022-40868 Out-of-bounds Write vulnerability in Tenda W20E Firmware 15.11.0.6
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formDelDhcpRule with the request /goform/delDhcpRules/
network
low complexity
tenda CWE-787
critical
 9.8
9.8