Vulnerabilities > Tendacn > G3 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-09-26 CVE-2024-46628 OS Command Injection vulnerability in Tendacn G3 Firmware 15.03.05.05
Tenda G3 Router firmware v15.03.05.05 was discovered to contain a remote code execution (RCE) vulnerability via the usbPartitionName parameter in the formSetUSBPartitionUmount function.
network
low complexity
tendacn CWE-78
critical
 9.8
9.8
2024-08-27 CVE-2024-8224 Out-of-bounds Write vulnerability in Tendacn G3 Firmware 15.11.0.20
A vulnerability, which was classified as critical, has been found in Tenda G3 15.11.0.20.
network
low complexity
tendacn CWE-787
critical
 9.8
9.8
2022-02-04 CVE-2022-24171 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetPppoeServer.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24170 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetIpSecTunnel.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24168 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetIpGroup.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24167 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetDMZ.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24165 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetQvlanList.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2021-45990 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function uploadPicture.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2021-45987 OS Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetNetCheckTools.
network
low complexity
tendacn CWE-78
critical
 9.8
9.8
2022-02-04 CVE-2021-45986 OS Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetUSBShareInfo.
network
low complexity
tendacn CWE-78
critical
 9.8
9.8