Vulnerabilities > Tendacn > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-27 | CVE-2023-44019 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01 Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the mac parameter in the GetParentControlInfo function. | 9.8 |
| 2023-09-27 | CVE-2023-44020 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01 Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the security parameter in the formWifiBasicSet function. | 9.8 |
| 2023-09-27 | CVE-2023-44021 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01 Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the formSetClientState function. | 9.8 |
| 2023-09-27 | CVE-2023-44022 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01 Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the speed_dir parameter in the formSetSpeedWan function. | 9.8 |
| 2023-09-27 | CVE-2023-44023 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01 Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the ssid parameter in the form_fast_setting_wifi_set function. | 9.8 |
| 2023-09-07 | CVE-2023-40942 | Out-of-bounds Write vulnerability in Tendacn AC9 Firmware 15.03.06.42Multitd0 Tenda AC9 V3.0BR_V15.03.06.42_multi_TD01 was discovered stack overflow via parameter 'firewall_value' at url /goform/SetFirewallCfg. | 9.8 |
| 2023-07-07 | CVE-2023-37144 | Command Injection vulnerability in Tendacn Ac10 Firmware 15.03.06.26 Tenda AC10 v15.03.06.26 was discovered to contain a command injection vulnerability via the mac parameter in the function formWriteFacMac. | 9.8 |
| 2022-08-30 | CVE-2022-37176 | Unspecified vulnerability in Tendacn AC6 Firmware Tenda AC6(AC1200) v5.0 Firmware v02.03.01.114 and below contains a vulnerability which allows attackers to remove the Wi-Fi password and force the device into open security mode via a crafted packet sent to goform/setWizard. | 9.8 |
| 2022-06-14 | CVE-2022-31446 | OS Command Injection vulnerability in Tendacn Ac18 Firmware 15.03.05.05/15.03.05.19 Tenda AC18 router V15.03.05.19 and V15.03.05.05 was discovered to contain a remote code execution (RCE) vulnerability via the Mac parameter at ip/goform/WriteFacMac. | 9.8 |
| 2021-10-29 | CVE-2020-22079 | Out-of-bounds Write vulnerability in Tendacn Ac10U Firmware and AC9 Firmware Stack-based buffer overflow in Tenda AC-10U AC1200 Router US_AC10UV1.0RTL_V15.03.06.48_multi_TDE01 allows remote attackers to execute arbitrary code via the timeZone parameter to goform/SetSysTimeCfg. | 9.8 |