Vulnerabilities > Tendacn

DATE CVE VULNERABILITY TITLE RISK
2022-02-04 CVE-2022-24167 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetDMZ.
network
low complexity
tendacn CWE-77
7.5
7.5
2022-02-04 CVE-2022-24168 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetIpGroup.
network
low complexity
tendacn CWE-77
7.5
7.5
2022-02-04 CVE-2022-24169 Out-of-bounds Write vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formIPMacBindAdd.
network
low complexity
tendacn CWE-787
7.8
7.8
2022-02-04 CVE-2022-24170 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetIpSecTunnel.
network
low complexity
tendacn CWE-77
7.5
7.5
2022-02-04 CVE-2022-24171 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetPppoeServer.
network
low complexity
tendacn CWE-77
7.5
7.5
2022-02-04 CVE-2022-24172 Out-of-bounds Write vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formAddDhcpBindRule.
network
low complexity
tendacn CWE-787
7.8
7.8
2021-12-03 CVE-2021-44352 Out-of-bounds Write vulnerability in Tendacn Ac15 Firmware 15.03.05.18Multi
A Stack-based Buffer Overflow vulnerability exists in the Tenda AC15 V15.03.05.18_multi device via the list parameter in a post request in goform/SetIpMacBind.
network
low complexity
tendacn CWE-787
7.5
7.5
2021-10-29 CVE-2020-22079 Out-of-bounds Write vulnerability in Tendacn Ac10U Firmware and AC9 Firmware
Stack-based buffer overflow in Tenda AC-10U AC1200 Router US_AC10UV1.0RTL_V15.03.06.48_multi_TDE01 allows remote attackers to execute arbitrary code via the timeZone parameter to goform/SetSysTimeCfg.
network
low complexity
tendacn CWE-787
critical
 9.8
9.8
2021-10-29 CVE-2021-31624 Classic Buffer Overflow vulnerability in Tendacn AC9 Firmware 15.03.05.14En/15.03.05.19
Buffer Overflow vulnerability in Tenda AC9 V1.0 through V15.03.05.19(6318), and AC9 V3.0 V15.03.06.42_multi, allows attackers to execute arbitrary code via the urls parameter.
low complexity
tendacn CWE-120
5.8
5.8
2021-10-29 CVE-2021-31627 Classic Buffer Overflow vulnerability in Tendacn AC9 Firmware 15.03.05.14En/15.03.05.19
Buffer Overflow vulnerability in Tenda AC9 V1.0 through V15.03.05.19(6318), and AC9 V3.0 V15.03.06.42_multi, allows attackers to execute arbitrary code via the index parameter.
low complexity
tendacn CWE-120
5.8
5.8