Vulnerabilities > Tenda > W9 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-12-26 CVE-2023-51099 OS Command Injection vulnerability in Tenda W9 Firmware 1.0.0.7(4456)Cn
Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formexeCommand .
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2023-12-26 CVE-2023-51098 OS Command Injection vulnerability in Tenda W9 Firmware 1.0.0.7(4456)Cn
Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formSetDiagnoseInfo .
network
low complexity
tenda CWE-78
critical
 9.8
9.8
2023-12-26 CVE-2023-51097 Out-of-bounds Write vulnerability in Tenda W9 Firmware 1.0.0.7(4456)Cn
Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formSetAutoPing.
network
low complexity
tenda CWE-787
critical
 9.8
9.8