Vulnerabilities > Tendacn > Ac10 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-07-07 CVE-2023-37144 Command Injection vulnerability in Tendacn Ac10 Firmware 15.03.06.26
Tenda AC10 v15.03.06.26 was discovered to contain a command injection vulnerability via the mac parameter in the function formWriteFacMac.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-03-23 CVE-2021-38278 Out-of-bounds Write vulnerability in Tendacn Ac10 Firmware 15.03.06.23
Tenda AC10-1200 v15.03.06.23_EN was discovered to contain a buffer overflow via the urls parameter in the saveParentControlInfo function.
network
low complexity
tendacn CWE-787
critical
 9.8
9.8