Filtered by vendor Tenda
Subscriptions
Total
1579 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2014-7281 | 1 Tenda | 2 A32, A32 Firmware | 2025-04-12 | N/A |
| Cross-site request forgery (CSRF) vulnerability in Shenzhen Tenda Technology Tenda A32 Router with firmware 5.07.53_CN allows remote attackers to hijack the authentication of administrators for requests that reboot the device via a request to goform/SysToolReboot. | ||||
| CVE-2022-47128 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-11 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey2 parameter at /goform/WifiBasicSet. | ||||
| CVE-2022-47127 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-11 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlPwd parameter at /goform/WifiBasicSet. | ||||
| CVE-2022-47126 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-11 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlEn parameter at /goform/WifiBasicSet. | ||||
| CVE-2022-47125 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-11 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlEn_5g parameter at /goform/WifiBasicSet. | ||||
| CVE-2022-47124 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-11 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey4 parameter at /goform/WifiBasicSet. | ||||
| CVE-2022-47123 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-11 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey3 parameter at /goform/WifiBasicSet. | ||||
| CVE-2022-47122 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-11 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlPwd_5g parameter at /goform/WifiBasicSet. | ||||
| CVE-2022-47121 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-11 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey parameter at /goform/WifiBasicSet. | ||||
| CVE-2022-47120 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-11 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the security_5g parameter at /goform/WifiBasicSet. | ||||
| CVE-2022-47119 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-11 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the ssid parameter at /goform/WifiBasicSet. | ||||
| CVE-2022-47117 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-11 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the security parameter at /goform/WifiBasicSet. | ||||
| CVE-2022-47115 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-11 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepauth parameter at /goform/WifiBasicSet. | ||||
| CVE-2024-42634 | 1 Tenda | 2 Ac9, Ac9 Firmware | 2025-04-11 | 9.8 Critical |
| A Command Injection vulnerability exists in formWriteFacMac of the httpd binary in Tenda AC9 v15.03.06.42. As a result, attacker can execute OS commands with root privileges. | ||||
| CVE-2024-51409 | 1 Tenda | 2 O3, O3 Firmware | 2025-04-11 | 6.5 Medium |
| Buffer Overflow vulnerability in Tenda O3 v.1.0.0.5 allows a remote attacker to cause a denial of service via a network packet in a fixed format to a router running the corresponding version of the firmware. | ||||
| CVE-2024-2489 | 1 Tenda | 2 Ac18, Ac18 Firmware | 2025-04-10 | 8.8 High |
| A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the function formSetQosBand of the file /goform/SetNetControlList. The manipulation of the argument list leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-256896. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. | ||||
| CVE-2024-2807 | 1 Tenda | 2 Ac15, Ac15 Firmware | 2025-04-10 | 8.8 High |
| A vulnerability classified as critical was found in Tenda AC15 15.03.05.18/15.03.20_multi. This vulnerability affects the function formExpandDlnaFile of the file /goform/expandDlnaFile. The manipulation of the argument filePath leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-257662 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. | ||||
| CVE-2024-2817 | 1 Tenda | 2 Ac15, Ac15 Firmware | 2025-04-10 | 4.3 Medium |
| A vulnerability, which was classified as problematic, has been found in Tenda AC15 15.03.05.18. Affected by this issue is the function fromSysToolRestoreSet of the file /goform/SysToolRestoreSet. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-257672. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. | ||||
| CVE-2022-47118 | 1 Tenda | 2 A15, A15 Firmware | 2025-04-10 | 9.8 Critical |
| Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey1 parameter at /goform/WifiBasicSet. | ||||
| CVE-2024-2899 | 1 Tenda | 2 Ac7, Ac7 Firmware | 2025-04-10 | 8.8 High |
| A vulnerability, which was classified as critical, has been found in Tenda AC7 15.03.06.44. Affected by this issue is the function fromSetWirelessRepeat of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-257942 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. | ||||