Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Tenda Subscribe
Total 1717 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-27017 1 Tenda 2 Ac10, Ac10 Firmware 2024-11-21 N/A 9.8 CRITICAL
Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the sub_45DC58 function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.
CVE-2023-24212 1 Tenda 2 Ax3, Ax3 Firmware 2024-11-21 N/A 9.8 CRITICAL
Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the timeType function at /goform/SetSysTimeCfg.
CVE-2023-23080 1 Tenda 10 Cp3, Cp3 Firmware, Cp7 and 7 more 2024-11-21 N/A 9.8 CRITICAL
Certain Tenda products are vulnerable to command injection. This affects Tenda CP7 Tenda CP7<=V11.10.00.2211041403 and Tenda CP3 v.10 Tenda CP3 v.10<=V20220906024_2025 and Tenda IT7-PCS Tenda IT7-PCS<=V2209020914 and Tenda IT7-LCS Tenda IT7-LCS<=V2209020914 and Tenda IT7-PRS Tenda IT7-PRS<=V2209020908.
CVE-2023-0782 1 Tenda 2 Ac23, Ac23 Firmware 2024-11-21 8.3 HIGH 7.2 HIGH
A vulnerability was found in Tenda AC23 16.03.07.45 and classified as critical. Affected by this issue is the function formSetSysToolDDNS/formGetSysToolDDNS of the file /bin/httpd. The manipulation leads to out-of-bounds write. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-220640.
CVE-2022-45781 1 Tenda 2 Ax1803, Ax1803 Firmware 2024-11-21 N/A 8.8 HIGH
Buffer Overflow vulnerability in Tenda AX1803 v1.0.0.1_2994 and earlier allows attackers to run arbitrary code via /goform/SetOnlineDevName.
CVE-2022-40076 1 Tenda 2 Ac21, Ac21 Firmware 2024-11-21 N/A 7.5 HIGH
Tenda AC21 V16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, function: fromSetWifiGusetBasic.
CVE-2022-40075 1 Tenda 2 Ac21, Ac21 Firmware 2024-11-21 N/A 7.5 HIGH
Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, form_fast_setting_wifi_set.
CVE-2022-40074 1 Tenda 2 Ac21, Ac21 Firmware 2024-11-21 N/A 7.5 HIGH
Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, setSchedWifi.
CVE-2022-40073 1 Tenda 2 Ac21, Ac21 Firmware 2024-11-21 N/A 7.5 HIGH
Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, saveParentControlInfo.
CVE-2022-40072 1 Tenda 2 Ac21, Ac21 Firmware 2024-11-21 N/A 7.5 HIGH
Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, function: setSmartPowerManagement.
CVE-2022-40071 1 Tenda 2 Ac21, Ac21 Firmware 2024-11-21 N/A 7.5 HIGH
Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, formSetDeviceName.
CVE-2022-40070 1 Tenda 2 Ac21, Ac21 Firmware 2024-11-21 N/A 7.5 HIGH
Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via bin/httpd, function: formSetFirewallCfg.
CVE-2022-40069 1 Tenda 2 Ac21, Ac21 Firmware 2024-11-21 N/A 7.5 HIGH
]Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, function: fromSetSysTime.
CVE-2022-40068 1 Tenda 2 Ac21, Ac21 Firmware 2024-11-21 N/A 7.5 HIGH
Tenda AC21 V16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, function: formSetQosBand.
CVE-2022-40067 1 Tenda 2 Ac21, Ac21 Firmware 2024-11-21 N/A 7.5 HIGH
Tenda AC21 V 16.03.08.15 is vulnerable to Buffer Overflow via /bin/httpd, function: formSetVirtualSer.
CVE-2022-40010 1 Tenda 2 Ac6, Ac6 Firmware 2024-11-21 N/A 5.4 MEDIUM
Tenda AC6 AC1200 Smart Dual-Band WiFi Router 15.03.06.50_multi was discovered to contain a cross-site scripting (XSS) vulnerability via the deviceId parameter in the Parental Control module.
CVE-2022-38831 1 Tenda 2 Rx9 Pro, Rx9 Pro Firmware 2024-11-21 N/A 9.8 CRITICAL
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/SetNetControlList
CVE-2022-38830 1 Tenda 2 Rx9 Pro, Rx9 Pro Firmware 2024-11-21 N/A 9.8 CRITICAL
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/setIPv6Status.
CVE-2022-38829 1 Tenda 2 Rx9 Pro, Rx9 Pro Firmware 2024-11-21 N/A 9.8 CRITICAL
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/setMacFilterCfg.
CVE-2022-38571 1 Tenda 2 M3, M3 Firmware 2024-11-21 N/A 7.5 HIGH
Tenda M3 V1.0.0.12(4856) was discovered to contain a buffer overflow in the function formSetGuideListItem.